Travel and event management company TAG has been awarded with the PCI DSS Level 3 merchant certificate.
TAG joins only a few of externally audited and accredited PCI DSS compliant travel management companies in the world, making this is a major milestone for the company.
The PCI DSS (Payment Card Industry Data Security Standard), is a comprehensive set of standards that require merchants and service providers that store, process, or transmit customer payment card data to adhere to strict information security controls and processes.
It was created by the founding brands of the PCI Security Standards Council, which includes American Express, Discover Financial, JCB International, MasterCard Worldwide, and Visa Inc.
TAG says it has commissioned continuous internal and external security tests to ensure that any security risks were tackled. The PCI DSS certification was awarded after the successful completion of a rigorous third- party audit by IRM.
Stuart Mackay, Chief Technology Officer at TAG, said: “With the added compliance security measures, TAG’s customers will now benefit from the most advanced security and data-management practices on the market. As technology advances, companies become more vulnerable to external threats and this is something we take very seriously at TAG. We are very proud to join a hand full of TMCs that can offer this level of security, reinforcing our positioning as a key player in the travel industry.”
Andrew Finnan, Head of Enterprise Risk at IRM, added: “IRM would like to congratulate TAG on achieving PCI DSS certification. Obtaining independent certification against the PCI Data Security Standard is not an easy task and we commend TAG for opting for independent certification whilst being eligible to self-assess. TAG demonstrated a high-level of commitment during their 2019 assessment, in ensuring their customers payment card data is processed and protected appropriately.”