Contact us
PCI-DSS certified security - be bolder

be bolder joins the select group of PCI DSS-certified companies

In 2023 the Payment Card Industry Security Standards Council reviewed our policies, procedures, and technical systems that store, process, and/or transmit cardholder data and the ASV scans of those systems, certifying that be bolder satisfactorily complies with the PCI Security Standards v3.2.1.

Why should a development company be PCI DSS certified?

According to a Privacy Rights report, between January 2005 and July 2018 alone, more than 10.9 billion records containing confidential information have been violated. Therefore, companies developing applications related to payment card transactions must use the security technologies and procedures recommended by the PCI Security Standards Council to prevent cardholder data theft.

Who is the Payment Card Industry Security Standards Council?

The Payment Card Industry Security Standards Council (PCI SSC) brings together the most prestigious credit and debit card companies in the world, including American Express, Discover Financial Services, JCB, MasterCard, and Visa Inc., is the one that developed the PCI security standards to protect cardholder data and is responsible for managing and enforcing these standards.

What does the PCI DSS certification process consist of?

PCI Data Security Standards are technical and operational requirements established by the PCI Security Standards Council (PCI SSC), which apply to all entities that store, process, or transmit cardholder data, seeking that developers of software and the manufacturers of applications and devices used in transactions complying with the following twelve requirements, organized into six control objectives:

Goals

PCI DSS Requirements

1. Build and maintain a secure network and systems.

  1. Install and maintain a firewall configuration to protect cardholder data.
  2. Do not use vendor-supplied defaults for system passwords and other security parameters.

2. Protect cardholder data.

  1. Protect stored cardholder data.
  2. Encrypt transmission of cardholder data across open, public networks.

3. Maintain a vulnerability management program.

  1. Protect all systems against malware and regularly update anti-virus software or programs.
  2. Develop and maintain secure systems and applications.

4. Implement strong access control measures.

  1. Restrict access to cardholder data by business need to know.
  2. Identify and authenticate access to system components.
  3. Restrict physical access to cardholder data.

5. Regularly monitor and test networks.

  1. Track and monitor all access to network resources and cardholder data.
  2.  Regularly test security systems and processes.

6. Maintain an information security policy.

  1. Maintain a policy that addresses information security for all personnel.

What role does the PCI DSS play in the travel and aviation sector?

The travel industry, especially airlines, is one of the sectors that carry out transactions with credit and debit cards the most to sell their products and services since they behave like retail companies, says César Ahmedt, chief strategy officer at be bolder.

Moreover, airlines have required the International Air Transport Association (IATA) to support their BSP card sales channel project to comply with PCI DSS. For this reason, IATA-accredited travel agents are now required to comply with PCI DSS.

be bolder is a digital transformation consultancy and engineering company that delivers cutting-edge solutions for aviation and travel companies that lever up their strategy on technology solutions and is now a PCI DSS Certified company.

Contact us to know more about our PCI DSS-certified solutions. We will be happy to advise you to choose the best technological and secure solution for your company.

* Image by Pamela Alvarez on bebolder.co

Author:
Picture of César Márquez
César Márquez
Communications specialist
See all posts

Table of Contents

Related posts
A man managing his flight

Self-managed flight changes: Lower costs and happier passengers

Flight changes are constant. Airlines can reduce call center load, lower disruption costs, and allow passengers to rebook 24/7 with transparent pricing.
Read more

Ideas that take off: How technology drives results for airlines

Zaki Aroutin, CIO of Plus Ultra, tells us how technology drives results for airlines through AI and integration, delivering competitive advantages.
Read more

“The freedom to fly”: Leadership and innovation lessons with Mauricio Sana

Mauricio Sana, CEO of Flybondi, shares his cutting-edge ideas and innovation with you to help you realize your airline's vision through technology.
Read more

Beyond instinct: Smarter airline pricing with Revenue Management

Customize your airline’s tech with the be bolder and Sabre alliance. Gain control, integrate seamlessly, and enhance passenger experience.
Read more
error 404

Thinking differently and acting methodically: How to find the path

Learn how be bolder found the root cause of a critical flaw in an airline's procurement workflow and offered a lasting, methodical solution.
Read more
Sabre - be bolder alliance

be bolder and Sabre join forces to offer the best to their clients

Do you run a travel company and wonder if you can get technological solutions from a large company adapting them to your needs? The answer is yes! With the alliance between be bolder and Sabre.
Read more