Service Provider is defined as business entity that is not a payment brand, directly involved in the processing, storage, or transmission of cardholder data. This also includes companies that provide services that control or could impact the security of cardholder data.
For example, if a company is providing services such as network firewall and that firewall is used to protect the clients’ network that involved in the one of the card payment process, then the company is categorized as service provider. Besides that, service providers including hosting, billing account management, back office services, payment processors, managed POS providers and so on should get PCI certified as they has direct involvement in the card payment process.
By having the commitment in protecting the sensitive payment card information, service providers are welcomed to contact us for more information regarding PCI DSS. Our PCI QSA and experts will explained PCI DSS in details and share some example on how the standard contributed in other companies’ business.
Contact us now for a delightful experience in getting your PCIDSS certification.
