CCM as a third party processor approved by Visa and MasterCard, is in line with the international payment companies regulations and requirements in terms of the logical security requirements for card personalization, physical security standards and the Payment Card Industry Data Security Standards known as PCI DSS.
The vendor compliance and security team execute an onsite security inspection to confirm compliance with the above mandatory requirements that aim to ensure:
- physical security of the premises,
- security of the data
- reliability of the fraud activity monitoring services
- work and human resources related policies and procedures
CCM's overall architecture is designed and constantly upgraded to comply with PCI DSS requirements. The data centers from which the service is operated and where the exploitation processes are fully compliant,are in line with the following objectives:
- Ensure that CCM platform deployments (applications, networks, production systems and data centers) are PCI DSS compliant.
- Implement continuous improvement methods to increase the level of compliance of already deployed and derived platforms.
- Ensure that CCM customers will benefit from fast certification processes based on CCM managed services.
CCM is also constantly sharing with merchants and customers the Payment Card Industry (PCI) Data Security Standard (DSS) and the Card Association Compliance Program as well as BDL anti fraud and security regulations and requirements.