Congratulation to VNPAY!!
VNPAY just achieved the highest level of international security PCI DSS 3.2.1 Level 1 for services including some services of VNPAY Cloud – Cloud Service Provider, VNPAY-POS (Smart POS), VNPAY payment gateway granted by Control Case international assessment organization.
PCI DSS (Payment Card Industry Data Security Standard) certificate is a mandatory information security standard for businesses that store, transmit and process payment cards. managed by 05 international payment organizations such as Visa, MasterCard, American Express, Discover, and JCB. Certification is the highest level of Service Provider established by the PCI Security Standards Council.
PCI DSS 3.2.1 with many strict conditions with requirements for multi-factor authentication, security standards in data encryption, and policy requirements to maintain compliance throughout the organization and perform periodic reviews.
Recognizing the importance of security in payment as well as the needs of customers in information security. VNPAY always strives to improve and strengthen the building of security standards for services that meet PCI DSS level 1 international security standards.
To achieve this certificate, VNPAY’s services have complied with 12 groups of principles, passed nearly 300 detailed requirements on information security and data management processes, and ensured the following 6 target groups: building and maintaining a secure network; payment card data protection; building and maintaining network security; Building an access control system; regular system monitoring and evaluation; information protection policy.
Users pay VNPAY-QR at shopping points.
Before that in 2020, VNPAY payment gateway was also granted PCI DSS 3.2.1 level 1 certificate, during the past 2 years VNPAY has continuously developed the most advanced technology site based on the Cisco ACI platform, meeting 12 requirements strict requirements for the system such as requirements on information security policy, data processing process, computer network structure, etc. to ensure smooth data, minimize security and risk of theft information.
Currently, the VNPAY payment gateway is implemented with more than 30 banks and more than 200,000 points accepting VNPAY-QR payments to a secure connection encrypted with TLS 1.2 with the strong encryption algorithm.
VNPAY-POS service – Smart POS is a comprehensive payment solution that helps businesses and business units quickly deploy many forms of payment for customers. Smart POS devices have built-in features: card payment, VNPAY-QR payment, invoice printing, and barcode scanning… making prices flexible and fast. The service also integrates payment software, sales management, and the enterprise’s software right on the device to help the process of information synchronization and control take place faster. At the same time, VNPAY-POS can develop its solution to suit the specific needs of each product line.
VNPAY-POS payment solution developed by VNPAY on Smart-POS payment device
VNPAY Cloud offers solutions, and provides Cloud Computing and Artificial Intelligence (AI) services to large enterprises, financial partners, banks, fintech… Following the development trend in the future of Cloud models, Cloud services provided by VNPAY are focusing on developing SaaS products for businesses to easily reach customers, expand the digital ecosystem and meet rapidly growing needs.
At the ceremony to receive the certificate, Mr. Nguyễn Hữu Phúc – Deputy General Director of VNPAY said that during the development of services, security and information safety factors are the top priority of VNPAY. Therefore, the unit always strives for customers’ transactions to be carried out in a digital environment with the best security, reliability, and safety at the highest level.
“We have spent a lot of resources and time developing services that meet international security standards. PCI DSS certificate is the basis for customers to trust and use VNPAY’s solutions, and at the same time, a motivation for us to continue our efforts in product development, ensuring safety and security with the utmost limited security holes and the risk of information theft, enhancing data protection. This is also a great opportunity for us to expand cooperation opportunities with international organizations,” Phúc added.