Latest news with #PaymentCardIndustryDataSecurityStandard
The Sun
4 days ago
- Business
- The Sun
Leading digital payments shift in Southeast Asia
KUALA LUMPUR: NTT Data Payment Services is strategically positioning itself at the forefront of transformation in Malaysia, the Philippines, and Thailand, as digital payments continue to reshape the economic landscape across Southeast Asia. The company aims to lead the evolution of digital payment solutions in the region by building an integrated ecosystem that blends global best practices with the demands of local markets. This forward-looking approach involves significant investment in next-generation payment platforms designed to enhance efficiency and security. Executive director and group CEO Sean Hesh (pic) said NTT Data Payment Services is expanding its cross-border payment capabilities to support growing regional commerce and facilitate smoother financial interactions. 'With a clear focus on meeting the diverse needs of small and medium enterprises (SMEs), large corporations, and government-linked initiatives, we are setting the stage to become a trusted partner in driving digital inclusion and economic growth across these dynamic markets,' he told SunBiz. Sean said with over 500,000 payment touchpoints, the company leverages data insights to enhance both customer experience and merchant performance. Its data platforms deliver actionable information – such as transaction patterns, customer preferences, and peak business hours – enabling merchants to optimise their operations. Additionally, by using predictive analytics, the company helps merchants personalise their services and increase customer engagement. 'We invest heavily in real-time fraud monitoring and maintain strong, multi-layered cybersecurity frameworks to safeguard our systems and customers. 'Compliance with regulations like Payment Card Industry Data Security Standard (PCI DSS) and the General Data Protection Regulation (GDPR) is fundamental to our operations. 'Additionally, we collaborate closely with cybersecurity experts and regulators to stay ahead of emerging threats, ensuring safe and trusted transactions throughout the region,' he said. Sean said NTT Data Payment Services actively collaborates with banks, regulators, and fintech partners to advance cross-border payment integration across Asean. He said these efforts focus on aligning payment standards, promoting interoperability, and streamlining onboarding and compliance processes. 'By working together, the goal is to build a more connected and inclusive payment ecosystem that enables seamless, secure, and scalable transactions throughout the region,' Sean said. Further, in supporting SMEs and microbusinesses in Malaysia's growing digital economy, Sean said NTT Data Payment Services is introducing a range of tailored solutions, including simplified onboarding, instant merchant approval, SME financing, and affordable payment acceptance options like QR pay and mobile POS systems. Touching on new technologies, Sean said: 'Artificial intelligence and machine learning are set to fundamentally transform the future of payments in Southeast Asia. 'They will enable real-time fraud detection, dynamic risk assessment, and highly personalised customer experiences. 'As digital adoption continues to grow, these technologies will play a crucial role in building trust, reducing friction, and ensuring secure, scalable transactions across the region.' Sean also noted that sustainability is becoming a core part of the company's technology and corporate roadmap. He said green fintech initiatives are being explored, including paperless onboarding, digital receipts, and energy-efficient infrastructure to minimise environmental impact. Internally, the company is also adopting eco-friendly workplace practices, such as reducing single-use materials and promoting responsible energy consumption.
Associated Press
08-05-2025
- Business
- Associated Press
G2A.COM achieves PCI DSS 4.0.1 recertification, strengthening its leadership in payment security.
LONDON, UNITED KINGDOM, May 8, 2025 / / -- achieves PCI DSS 4.0.1 recertification, strengthening its leadership in payment security the world's largest marketplace for digital entertainment, has successfully renewed its compliance with the Payment Card Industry Data Security Standard (PCI DSS), achieving certification under the latest version 4.0.1. This recertification reinforces G2A's continued commitment to safeguarding user data and upholding the highest global standards of payment security. The PCI DSS standard, established by the PCI Security Standards Council, is a mandatory compliance framework for any company that stores, processes, or transmits cardholder data. Major global brands such as Amazon, Apple, and Microsoft maintain this certification, and is proud to stand alongside them in prioritizing secure commerce. 'The renewal of our PCI DSS certification – especially under the latest and most stringent version – underscores our long-term dedication to protecting our users' data at every stage of the payment process,' said Dorota Wróbel, General Manager at 'Security isn't a checkbox – it's a mindset that runs through every system, every process, and every person at Upgrading to PCI DSS 4.0.1 is a new standard in vigilance Version 4.0.1 of the PCI DSS introduces a major evolution in how organizations must operate. Unlike earlier iterations, this version transforms compliance from a one-time project into an ongoing security program, requiring organizations to implement continuous monitoring, proactive risk mitigation, and security-by-design development practices. infrastructure and operations were assessed by Patronusec, one of the Qualified Security Assessor (QSA), as part of a comprehensive audit covering nearly 270 rigorous security controls across people, processes, and technologies. G2A's recertification process validates the integrity of its security architecture and the robustness of its payment ecosystem. Achieving this certification is far from a formality — it is reserved for only the most thoroughly prepared companies in the world when it comes to data security. Building trust through security First certified in February 2024, G2A has now maintained its PCI DSS compliance for a second consecutive year. The renewal, awarded on February, confirms that the company continues to meet – and exceed – the industry's most demanding cybersecurity requirements. The first year is the most challenging, as it introduces a range of new and complex security processes that must be implemented and strictly followed. Compliance is not declarative – it must be proven with solid evidence during re-certification audits. 'For our millions of global users, trust is everything,' said Dorota Wróbel, 'This certification is one of many ways we prove that we take that trust seriously – not just once a year, but every single day.' To learn more about G2A's, visit: G2A's Corporate website. – ENDS – About is the world's largest and most trusted marketplace for digital entertainment, where more than 35 million people from 180 countries have purchased over 135 million items. Users can choose from more than 90,000 digital offerings incl. games, DLCs, in-game items, as well as non-gaming items such as gift cards, subscriptions, software, or e-learning - sold by sellers from all over the world. leads in online security, awarded with the prestigious American CNP award for the Best Merchant Team of the Year in Anti-fraud and Cybersecurity, alongside companies such as Microsoft, Barclay's Bank, and First Data. Julia Horvath Ranieri email us here Legal Disclaimer: EIN Presswire provides this news content 'as is' without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.
Zawya
12-03-2025
- Business
- Zawya
Misr Digital Innovation has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification
Misr Digital Innovation (MDI), a subsidiary of Banque Misr and the company responsible for building Egypt's first digital bank, is proud to announce that it has successfully attained the Payment Card Industry Data Security Standard (PCI DSS) Certification in collaboration with IGRC SQUARE, an accredited Qualified Security Assessor (QSA). This achievement not only establishes MDI as a globally recognized entity by obtaining the PCI DSS certification, but also makes it the first in the market to be certified under the latest version, v4.0.1. This version offers enhanced flexibility, clearer requirements, and a stronger focus on security, risk management, and monitoring, aligning with modern cybersecurity practices and promoting a proactive, risk-based approach to data protection. The PCI DSS outlines stringent security requirements to protect environments where cardholder data (CHD) is stored, processed, or transmitted. It serves as a benchmark of technical and operational standards designed to safeguard payment account data. This certification enhances MDI's cybersecurity stance and reinforces customer trust by ensuring the highest level of data protection. Sherif Elbehery, CEO of MDI, remarked on this: 'This achievement represents a significant milestone for our organization. It underscores our unwavering commitment to maintaining the highest standards of security and compliance while further solidifying our position in the Central Bank of Egypt's regulatory file submissions. With IGRC SQUARE's unwavering support throughout the entire process, this certification marks the first global recognition of our bank.' Mohamed Helmi, Chief Information Security Officer at MDI, added: 'Achieving the PCI DSS certification enhances our ability to gain the trust of customers, partners, and all relevant parties by providing the highest standards of security and privacy protection. We went through a comprehensive and meticulous process, starting with planning and gap analysis, followed by the implementation of security controls and system testing to ensure compliance, all the way through to the official audit and documentation process." As the key partner in this certification journey, Adel Higazy, CEO of IGRC SQUARE, commented: 'Our mission as a leading cybersecurity solutions provider is to support organizations in protecting their data and devices with best-in-class security systems, empowering organizations of all sizes to confidently navigate the complex and ever-evolving cybersecurity landscape, safeguarding their critical data and systems from growing threats. This milestone is particularly significant as it positions MDI to gain the trust and confidence of its customers during this transformative phase. We are honored to be part of this landmark achievement for MDI.' The PCI DSS certification is a cornerstone of the Information security risk management strategy for financial institutions, banks, and cybersecurity technology and service providers. It not only secures sensitive data but also reinforces operational integrity and strengthens competitive positioning in an increasingly regulated and technology-driven industry. About Misr Digital Innovation: Misr Digital Innovation (MDI) was established in 2020 with the vision of building Egypt's first fully native digital bank. Leveraging advanced technologies and innovative solutions, MDI is committed to transforming the banking experience by offering seamless, secure, and accessible digital financial services. By combining deep expertise in banking with state-of-the-art digital solutions, MDI is leading the charge in redefining the future of banking in Egypt, making financial services more efficient, transparent, and customer-centric. As part of Egypt's strategic commitment to digital transformation, MDI aims to drive financial inclusion and empower customers through a fully integrated digital ecosystem. About IGRC SQUARE: IGRC SQUARE is a leader in risk, compliance, and privacy solutions, specializing in PCI DSS, PCI 3DS, PCI PIN, ISO 27001, and data privacy frameworks. With unmatched expertise, IGRC SQUARE empowers organizations to secure payment ecosystems, safeguard sensitive information, and achieve regulatory excellence. Their innovative, tailored approaches ensure seamless compliance, robust security, and operational resilience. Trusted by enterprises worldwide, IGRC SQUARE is committed to advancing governance, risk, compliance, and privacy standards across industries.
Associated Press
12-03-2025
- Business
- Associated Press
Aperia Compliance, an IXOPAY Company, Launches Payment Script Monitor to Help Merchants Prevent Fraud and Stay PCI Compliant
Automated solution detects unauthorized script changes, protecting online transactions and ensuring PCI DSS 4.0 compliance before the March 31, 2025 deadline. LEHI, UT / ACCESS Newswire / March 12, 2025 / Aperia Compliance, an IXOPAY company and a leader in Payment Card Industry Data Security Standard (PCI DSS) validation and risk management, today announced the launch of Payment Script Monitor, an advanced compliance solution designed to help merchants meet the final phase of PCI DSS 4.0 requirements taking effect on March 31, 2025. With cybercriminals increasingly targeting online payment pages through malicious script injections, Payment Script Monitor provides continuous monitoring, real-time alerts, and compliance automation, enabling businesses to detect and prevent unauthorized modifications to their checkout pages. The solution specifically helps merchants comply with the critical PCI DSS requirements 6.4.3 and 11.6.1, which mandate active script management and monitoring for e-commerce transactions. 'PCI DSS 4.0 significantly raises the bar for merchant security, particularly with the introduction of the script management and monitoring requirements for e-commerce sites,' said John Noltensmeyer, Chief Information Security Officer at IXOPAY. 'We understand the evolving requirements can be challenging for merchants. Payment Script Monitor gives them an automated way to track and validate changes to scripts on their payment pages, reducing security risks and ensuring compliance without adding operational complexity.' Supporting Compliance, Security, and Revenue Growth Built as an intuitive, cost-effective solution, Payment Script Monitor empowers merchants, ISOs, acquirers, and payment processors to maintain compliance effortlessly. Key features include: Automated Script Inventory - Instantly generates a baseline inventory of all active scripts on merchant payment pages for easier onboarding. Real-Time Monitoring & Alerts - Detects unauthorized changes and malicious modifications with continuous scanning. Script Authorization & Validation - Provides a step-by-step process for merchants to review, approve, and manage scripts. Centralized Compliance Portal - A single interface for tracking script activity, ensuring alignment with PCI DSS 4.0. U.S.-Based Support - Expert guidance available to help businesses navigate security challenges. By integrating Payment Script Monitor, IXOPAY and Aperia Compliance advance their mission to help merchants protect customers' payment data, prevent fraud, and stay PCI compliant with ease, following their merger in December 2024. About Aperia Compliance Aperia Compliance, an IXOPAY company, is a leader in Payment Card Industry (PCI) validation and risk management, providing PCI Level 3 and 4 compliance for ISOs, payment processors, and small and medium-sized businesses. Learn more IXOPAY is a leading provider of enterprise-grade payment orchestration, helping businesses simplify, secure, and scale their payment systems. IXOPAY has orchestrated over $40 billion in transactions for customers in more than 30 countries. With a fully integrated platform, tokenization capabilities, and flexible payment optimization modules, IXOPAY enables enterprises to manage payments efficiently across multiple providers. Learn more at
Associated Press
04-03-2025
- Business
- Associated Press
SUNRATE and Atlas Forge Strategic Partnership to Revolutionise Travel Payments with Innovative Solutions
SINGAPORE - Media OutReach Newswire - 4 March 2025 - SUNRATE, the global payment and treasury management platform, today announced a strategic partnership with Atlas, the global travel technology company, at ITB Berlin 2025. As part of the partnership, SUNRATE will integrate its advanced travel payment solutions with Atlas's ATRIP (Air Travel Retailing and Information Platform). Revolutionising the Travel Industry with Global Payments and Low-Cost Carrier (LCC) Content This partnership exemplifies how SUNRATE tackles key challenges in global travel distribution. At ITB Berlin, SUNRATE showcased how its commercial cards - trusted by partners like Atlas - are transforming travel payments for the industry. SUNRATE's virtual and physical commercial cards enable customers to settle card spends in more than 15 currencies. They also allow the customisation of key parameters, such as card limits and use cases, providing tailored financial control. Customers can also access real-time transaction statements and reconciliation tools. SUNRATE is certified to the international financial data security standard, Payment Card Industry Data Security Standard (PCI DSS) Level 1. 'Teaming up with Atlas underscores our commitment to innovation and customer-centric solutions. As we continue to lead the way in global payment solutions, we remain steadfast in our mission to evolve our commercial card offerings, empowering travel businesses to navigate complex payment landscapes with agility and confidence,' said Shawn Qin, Head of Card Business at SUNRATE. Addressing Cross-Border Payment Challenges Cross-border payments remain one of the biggest challenges for the global travel distribution industry. Providing flexible, secure, and efficient payment solutions to travel sellers is essential for Atlas, which partners with 150 low-cost airlines and serves clients across the globe. 'The global payment ecosystem is constantly evolving, and keeping up with changing needs and regulations is no small task. That's why Atlas is committed to working with the world's leading payment providers to deliver the most up-to-date solutions to our customers,' said Mary Li, CEO and Founder of Atlas. 'We are thrilled to partner with SUNRATE to empower the global travel ecosystem with efficient, convenient, and secure payment infrastructure.' Hashtag: #SUNRATE The issuer is solely responsible for the content of this announcement. About SUNRATE SUNRATE is a global payment and treasury management platform for businesses worldwide. Since its inception in 2016, SUNRATE has been recognised as a leading solution provider and has enabled companies to operate and scale both locally and globally in 190+ countries and regions with its cutting-edge proprietary platform, extensive global network, and robust APIs. With its global business headquarters in Singapore and offices in Hong Kong, Jakarta, London, and Shanghai, SUNRATE partners with the top global financial institutions, such as Citibank, Standard Chartered, Barclays, J.P. Morgan and is the principal member of both Mastercard and Visa. To learn more about SUNRATE, visit About Atlas Atlas is a global travel tech company connecting travel sellers worldwide with superior low-cost content powered by cutting edge technology. With its advanced Atlas's ATRIP (Air Travel Retailing and Information Platform), travel professionals can now sell extensive content from over 150 low-cost carriers - via 1 single API. Atlas leverages cloud-first technology and data infrastructure to provide fast and reliable access to high-quality LCC content, competitive fares, and efficient post-ticketing services. Combined with AI-enhanced content and tools, personalised payment solutions, and end-to-end customer service, this LCC content presents a new era in airline retailing – it's never been easier to sell low-cost flights. To learn more about Atlas, visit:
