The Payment Card Industry Data Security Standard is a worldwide information security standard assembled by the Payment Card Industry Security Standards Council (PCI SSC). The standard was created to help organizations that process card payments prevent credit card fraud through increased controls around data and its exposure to compromise.
Using the services of Giga Vault Storage brings you added value because we actually help you in meeting compliance with PCI DSS. There are actually six areas of concern that cover the PCI DSS and in each of them Giga Vault Storage helps you meet and maintain compliance.
1. Build and Maintain a Secure Network
Minimum PCI standards are: Install and maintain a firewall configuration to protect card data. Do not use vendor defaults for passwords or other security measures.
At Giga Vault Storage we see your off-site data backup site as part of your network. Our Servers are housed in world class data centers and our network security currently exceeds today's standards. Our servers are monitored 24/7/365 to ensure the highest levels of security. We have multiple security configurations in place including firewalls, port restrictions, network Intelli-Sense Defense systems, and more.
2. Protect Card Holder Data
Minimum PCI Standards are: Protect stored cardholder Data. Encrypt transmission of cardholder data across open, public networks.
Before ever leaving your servers or workstations, your data is encrypted using 448-bit blowfish encryption algorithms that you have password protected. Only those with the passwords, not our administrators, staff or anyone else, can view the data. When the Giga Vault Client Software connects to our servers to do a backup job it is done via an encrypted SSL connection.
3. Maintain a Vulnerability Management Program
Minimum PCI Standards are: Use and regularly update anti-virus software or programs. Develop and Maintain secure systems and applications.
At Giga Vault Storage all of our servers are professionally maintained. You can be assured that all security patches and software updates are applied seamlessly in the background, with no downtime for our clients. The Giga Vault Client Software is updated automatically as upgrades become available which helps prevent against evolving threats.
4. Implement Strong Access Control Measures
Minimum PCI Standards are: Restrict access to cardholder data by business need to know. Assign a unique ID to each person with computer access. Restrict Physical Access to Cardholder Data.
At Giga Vault Storage no one but the holder of the encryption password can view the data you have stored on our systems. If that password is lost then there just is no way to decrypt the data. There are no backdoors into our system. Each user of our client software has to choose a unique user ID and couple it with a password to gain access to the software interface. All of Giga Vault Storage Servers are kept in locked cabinets that are under 24-hour security camera surveillance.
5. Regularly Monitor and Test Networks
Minimum PCI Standards are: Track and Monitor all access to network resources and cardholder data. Regularly Test Security Systems and Processes.
At Giga Vault Storage we heavily rely on audit trails. Every interaction with our network, every user request is logged for latter analysis of usage etc. You can rest assured that you will be able to see who in your organization has accessed your backup data and when they did it.
6. Maintain an Information Security Policy
Minimum PCI Standards are: Maintain a policy that addresses information security for employees and contractors.
At Giga Vault Storage only employees with special clearance have access to our servers. Most of our employees never see the equipment we have or for that matter ever set foot within our data centers. Only those employees who have a need to, and have undergone rigorous background checks and meet our numerous other security requirements ever get to see our servers. It’s the same with our administrative interface only cleared engineers have access to this interface. We maintain a very strict security policy in regards to our employees, consultants, etc. At Giga Vault Storage the integrity of your data is our number one concern.