PCI Compliancy

In compliance with the Cardholder Information Security Program (www.visa.com/cisp) since 2006, iPass is a Level 1 service provider for transmission services. As such, iPass delivers the following services as part of our complete solution package for retailers:

• Demonstrate compliance yearly to the current PCI DSS to a Qualified Security Assessor.
• Deliver an annual assessment of the retail customer network design, access-policies, security hardening, device vulnerability assessments, and iPass management systems and practices.
• Deliver iPass’ valid Attestation of Compliance upon request
• Routine endpoint vulnerability scanning, performed by a Approved Scanning Vendor (ASV) until customer endpoints receive a “pass” or an ASV approved exception report.
• Issue a scanning compliance letter after each vulnerability scan during the term of the contract for iPass-managed endpoints.

Although iPass does not process or store credit information, iPass understands its responsibility as a Level 1 service provider to secure and protect any cardholder information it may possess.

With iPass PCI compliance, you will be able to:

• Help retail businesses address PCI requirements
• Build loyalty by safeguarding employees’ and customers’ personal data
• Securely expand the network to add other technologies such as wireless applications and devices, interactive kiosks, or unified communications with a single solution
• Allow flexibility to assess and manage critical retail systems as needed.

Key capabilities:

• Build and maintain a secure network
• Protect cardholder data
• Maintain a vulnerability management program
• Implement strong access control measures
• Regularly monitor and test

 

Call iPass Unity Network Services: 866-801-6930

Contact an iPass Unity Network Services representative