28.07.2014

Intervale Confirms the Certification of Its Processing Center According to the PCI DSS 3.0 Standard

Informzaschita completed a project of certification of the SmartCardLink’s ProcessingCenter forming a part of the Intervale Group for its compliance with the PCI DSS standard. The experts conducted an audit of the payment card data processing environment comprising services such as MTS-Pay, MasterCard Mobile, card payment, money transfer and remote banking service windows as well as PlayGuide Acquirer (web acquiring payment platform).

A decision to establish the IntervaleProcessingCenter was taken in 2012 during the implementation of a long-term development strategy. When the Center was at the design stage, security of its information systems was of high priority, and such systems were based on high-end software and security tools from the leading global vendors. In the fall of 2013, the ProcessingCenter received the MSP TPP (Member Service Provider Third Party Processor) status in the MasterCard payment system. A project to receive a similar status in the Visa payment system is on the way now.

Oksana Smirnova-Krell, Intervale Group’s CEO, says: “To provide our customers and partners with up-to-date payment services, Intervale pays special attention to ensure that the Company’s ProcessingCenter guarantees protection of information systems against any unauthorized data access. The PCI DSS Compliance Certificate is an additional confirmation of our compliance with the requirements set by payment systems for processing services and is a guarantee that our services are secure and reliable.”

 

Informzaschita’s QSA Leonid Pletnev comments: “In our operations, our aim is not only to formally comply with the regulating authority’s requirements but also to guarantee company payment card data security.  This approach enabled SmartCardLink jointly with Informzaschita’s experts to implement most of the requirements set by the new version of the standard as early as a year ago. This applies to event monitoring procedures, risk analysis, secure storage of card details, service provider management, inventory taking of the payment environment components and control over sensitive technologies updated by the regulating authority. I would also like to emphasize the deep understanding of the need to guarantee information security on the part of Intervale’s management, which ensures correct organization of process flows in the Company and guarantees safety of its services.”

The Intervale Group’s Information Security Management System (ISMS) was previously certified for compliance with the ISO/IEC 27001:2005 standard.