The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organisations proactively protect customer account data

The core of the PCI DSS is a group of principles and accompanying requirements, around which the specific elements of the DSS are organised

• Build and Maintain a Secure Network
• Protect Cardholder Data
• Maintain a Vulnerability Management Program
• Implement Strong Access Control Measures
• Regularly Monitor and Test Networks
• Maintain an Information Security Policy

Iocea committed to becoming PCI DSS Level 1 compliant, and entrusted that process to 7Safe. Being Level 1 compliant means that we have been accredited via a comprehensive process to document and analyse our vulnerability via scanning and penetration testing, to the final production of a Report on Compliance (ROC). Being Level 1 PCI DSS accredited means we operate and manage our business with the highest degree of integrity and security, and gives total peace of mind and assurances to our customers for their own compliancy requirements.

To achieve this, we have undertaken a lengthy and a rigorous independent audit and considerable investment to reach Level 1 PCI DSS accreditation. Level 1 accreditation is a standard that should be reached by every UK ecommerce solution providers, but in almost all cases is not

Iocea one of only a very few ecommerce solution providers in the UK who have achieved PCI DSS Level 1 Certification. Many companies may purport to be PCI compliant but have not invested in the rigorous audit process of Level 1 certification.

Level 1 Certification is the only level of PCI DSS compliance that is INDEPENDENTLY audited by a certified third party (in our case 7Safe www.7safe.co.uk ), and not simply by the web company themselves.
It is critical to your business you ask the question.