International acquiring service receives PCI DSS security validation

Valitor, a leader in cross-border acquiring services and international merchant and card solutions, recently received validation of compliance against the PCI DSS (Payment Card Industry Data Security Standard).

The Iceland-based company already has ISO 27001 certification for all of its operations and services to retailers, banks, savings banks and card holders. Together, these two security standards form a sound foundation on which to build the company’s security affairs for the future.

“This new certification is an important instrument, as regards both implementing our policies in security issues, as well as meeting the requirements of the international community. The application of the validation is actually quite extensive, as requirements on the status of security affairs in companies in general have become extremely important in their communications and ability to continue as a going concern,” explained Viðar Þorkelsson, CEO of Valitor.

The company’s information security policies are based on laws and regulations on personal privacy, the EU’s directives on personal privacy and relevant security standards ISO 27001 and PCI DSS. At the same time, the policies fully accord with the rules of the Data Protection Authority as regards the security of personal information and the guidelines issued by the Icelandic Financial Supervisory Authority (FME) on the operation of the IT systems of parties subject to supervision.

Þorkelsson continued, “The PCI DSS validation of compliance does not, of course, mark the end of our efforts in this field. We will, as before, continue to be vigilant and fully participate in the further development of global security issues.”