Semafone, a provider of data security and compliance solutions for call and contact centers, today announced that its Cardprotect version 4 has been validated by the Payment Card Industry Security Standards Council (PCI SSC) against the latest version of the Payment Application Data Security Standard (PA-DSS).
To earn PA-DSS certification, Cardprotect underwent extensive source code review, testing of the installation and deployment of the payment application, and comprehensive penetration testing. This stringent assessment process includes secure development requirements, secure authentication, secure remote access, encrypting sensitive internet traffic, a formal assessment by a qualified security assessor (PA-QSA) and their penetration testing team, and validation by the PCI SSC assessor quality management team.
"Semafone has been PA-DSS certified since 2012, which demonstrates our consistent commitment to achieving the highest possible standards in payment data security. By consistently obtaining a PA-DSS certification, we're providing an unmatched level of security and peace of mind, not only for our direct customers but also for our partners," said Gary Barnett, CEO of Semafone, in a statement. "PA-DSS certification is a requirement for any maker, developer, and integrator of payment applications that use credit card information for payment authorization and settlement, and that are sold, distributed, or licensed to third parties. We are literally saving our payment application partners valuable time and costs that would otherwise have gone toward achieving the certification themselves. For our customers, they can rest assured that by selecting Semafone they will be taking every measure possible to protect their consumers' sensitive information and reduce the risk of a data breach."
In addition to PA-DSS certification and being a Level 1 PCI DSS Service Provider, Semafone is also certified for ISO27001 and is a Level 1 Visa Listed Merchant Agent.