Home > Services > Compliance

Services

Compliance

Privity understands your business requirements, challenges and legal responsibilities. We know from first-hand experience how difficult it can be to implement effective changes or to secure assets without the expense of lengthy training or the hiring of extra staff. We are here to guide you through this process to clarity.

Privity offers a complete package of services covering information security, privacy, and compliance including the management and governance of these areas through precision deployment of custom-designed technology packages. Our strength and our uniqueness as a company is our precise focus that enables us to advocate for our clients and to create tailored and lasting security solutions for your company.

PCI or Payment Card Industry Compliance involves compliance with the Payment Card Industry's Data Security Standard (PCI DSS), which aims to protect credit card data by securing it through various secure data management approaches. Any organization that processes or stores data is subject to PCI Compliance and may be required to demonstrate compliance in different ways, as determined by the organization’s merchant bank or Acquirer.

Prior to the development of the PCI DSS, each of the five payment brands (Visa, MasterCard, AMEX, JCB and Discover) had their own security standards against which all merchants processing credit cards needed to be compliant. Because of the perceived difficulty of maintaining different security standards, the credit card lenders formed the Payment Card Industry Security Standards Council (PCI SSC) to provide a uniform standard against which all programs could be measured.

The acquiring banks – the intermediaries between the merchants and the payment brand networks, govern merchant compliance with these programs. Deadlines with respect to compliance have been communicated to the acquirers by the brands, making the acquirers responsible for their merchants’ compliance.

Level 1 merchants in Canada have been given a “global compliance deadline” by Visa (September 30, 2010). No other merchant levels have been provided with deadlines by Visa at this time; however, acquiring banks may place individual compliance demonstration requirements on individual merchants at their discretion.