DataSafe has completed the PRISM Privacy+ Certification to ensure that we are fully compliant with the PCI-DSS requirements related to the protection of clients' data when transported, inventoried and stored in DataSafe Records Centers. To achieve Privacy+ certified status, companies must establish and have a third-party audit of internal controls designed to meet a specific set of control objectives designed to preserve information privacy. More information on the laws, regulations and standards that act as privacy guidelines can be found here.
PCI (Payment Card Industry) compliance is made up of a set of requirements designed to ensure that all companies that process, store or transmit credit card information maintain a secure environment. Merchants who do not comply with PCI DSS may be subject to fines, card replacement costs, costly forensic audits, brand damage, etc. should a breach event occur. DataSafe can assist clients in becoming PCI compliant by protecting their documents and media containing cardholder data, as required by PCI-DSS.