Access Healthcare achieves PCI DSS (V3.2.1) compliance for its payment card processing centers in Manila and IT/Infrastructure operations in India. This certification not only provides additional security assurance to its customers but also allows the organization to process the patient intake management process confidently as it requires storing and processing of credit card information and other sensitive information. The assessment was performed by one of the leading and qualified security assessing organizations in the industry.

PCI DSS refers to the Payment Card Industry Data Security Standard, which was designed to enhance the security controls to protect the payment card information from theft and misuse. It applies to all entities that process card transactions to verify that the provider upholds the highest data security and privacy standards. By achieving this certification, Access Healthcare assures its healthcare customers that they value the partnership and complies with all the 12 major requirements of PCI DSS standards. The standard includes requirements related to the following information security agenda:

• Security management

• Policies and procedures

• Physical security

• Network architecture

• User access management

• Network and systems monitoring

In addition to the PCI DSS 3.2.1 certification, Access Healthcare has HITRUST CSF, ISO 9001:2015, and ISO 27001:2013 certifications is SOC 1 Type 2 audited, and fully compliant with HIPAA standards.

RELEVANCE OF THE PCI DSS CERTIFICATION

The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard, which helps to maintain a secure environment for organizations that accept, process, store, or transmit credit card information.

PCI DSS certification provides our customers with an assurance that;

1. Card Holder Data Environment (CDE) will be properly protected.

2. Reduce the risk of payment card fraud throughout the entire payment card system.