transcosmos becomes the first PCI DSS v4.0 certified BPO services company in South Korea

Meeting all 512 security testing requirements, demonstrates global standard information management systems as a Global BPO company

transcosmos is proud to announce that the company has become the first BPO company in South Korea to receive a Payment Card Industry Data Security Standard (PCI DSS) version 4.0, the latest version of PCI DSS, the global credit card security standards for organizations that handle cardholder data.

PCI DSS is the global card information security standard, which is established by leading international credit card companies to protect card member data, reduce the risk of potential data theft or loss and ensure consistent security assessment procedures. The PCI DSS defines security requirements to protect environments where payment account data is transmitted, processed and stored to secure cardholders’ sensitive authentication data in the process of international credit card transactions and other forms of card-based payments for purchasing goods and services from global companies. PCI DSS certification is valid for one year, and an attestation of compliance requires an annual renewal before the current certification expires.

transcosmos became the first PCI DSS qualified company in the South Korean BPO market in 2016. Since then, the company has always kept all credit card payment procedures and environments in compliance with global security standards, successfully passing annual assessment, which continues to become more stringent year after year. Now, the company’s information management system was certified with the latest credit card security standard PCI DSS v4.0—the first company to be qualified in the BPO industry—demonstrating its standing as a global BPO company.

The PCI DSS v4.0 standard consists of 6 goals and 12 requirements, and a total of 512 information security testing procedures. Version 4.0 is even stricter than the already stringent version 3.2.1, which included 412 testing procedures. Not only introducing Multi-Factor Authentication requirements, version 4.0 comes with drastically increased compliance requirements such as stronger rules on application account management.

transcosmos has cleared all detailed security requirements under the 6 categories: 1) Build and Maintain a Secure Network and Systems; 2) Protect Account Data; 3) Maintain a Vulnerability Management Program; 4) Implement Strong Access Control Measures; 5) Regularly Monitor and Test Networks; and 6) Maintain an Information Security Policy. Ultimately, transcosmos won Level 1 Certification, the highest compliance level under the latest PCI DSS.

Adapting to South Korea’s rapidly changing credit card payment environment ahead of others, transcosmos aims to provide clients and consumers across the globe with information security services always staying ahead of the curve. Going forward, transcosmos will continue to deliver secure and stable services to win clients’ trust.

With around 10,000 people, transcosmos Korea is empowering more than 350 clients in South Korea with its business process outsourcing (BPO) services specifically optimized for each industry. The services include IT solutions development, e-commerce, digital marketing, field services (FS), management of lifelong learning institutes and education consulting, contact center opening and management, direct mail (postal delivery), omnichannel system development and management (mobile, e-mail, postal delivery), and more. Offering optimum services for each individual client across industries and sectors, transcosmos Korea helps clients optimize costs and boost sales, productivity and customer satisfaction (CS).

Visit us here