Polar Imaging achieves Service Provider PCI Compliance for our Cloud-Based offering (ImageSilo)
What is PCI Compliance?
PCI stands for “Payment Card Industry”. Being PCI compliant means the company in question adheres to the standard set by the Payment Card Industry Security Standards Council (PCI SSC). This standard ensures that all companies who accept, process, store and transmit credit card information do so in a secure environment.
Polar Imaging was deemed PCI compliant by Control Gap, the largest dedicated PCI compliance company in Canada. The executive team at Polar Imaging worked alongside a QSA (Qualified Security Assessor) going through every process related to our cloud-based offering, ImageSilo to ensure it adheres to the PCI security standards. Once this engagement was completed, Polar Imaging was issued an Attestation of Compliance (AOC) signed by a QSA, solidifying PCI compliance.
Why did we go through the PCI compliance process?
Here at Polar Imaging we pride ourselves on providing the best service possible for our clients and so going through this process was a good way to further reassure us and our clients that we live up to our promise of offering a completely safe and secure solution. Whether our clients handle credit card information or not, we wanted to ensure that our service is as secure as possible for any type of data that is stored on it. We understand that safety and security is very important to our clients and we take this concern very seriously. This Attestation of Compliance allows us to prove that we take every measure necessary to protect and secure our clients data.
“Achieving an Attestation of Compliance was not only important for us as an organization but critical for our clients who have trusted our offering to manage their highly sensitive data. When partnering with us to manage data, knowing that the information is controlled and managed in a secure environment provides an unparalleled level of comfort for our clients. The fact that our solution meets the security standards for a service provider as required by the PCI security Council is invaluable.”
Steve Todd, Director Of Operations
What does it mean for our customers?
Our customers can rest assured that their data is in good hands when they do business with us. Since we started our business in 2001 we’ve maintained the same philosophy when handling data and information. Getting this Attestation of Compliance from the most reputable PCI Compliance company in Canada is just an official way of demonstrating this philosophy. For our customers who deal with credit card information, when using our Cloud-based solution, ImageSilo to manage information, they’re now enabled to achieve PCI compliance. If clients are subject to PCI compliance standards, then using our Cloud-based solution makes them much closer to meeting PCI requirements. Managing data with us is a shorter distance to the PCI compliance finish line vs. attempting to manage the data in your own environment.
ImageSilo is a zero-knowledge solution such that only end clients can access their data and all downstream parties involved in delivering the service only see encrypted data that they are unable to decrypt.
About Control Gap
Canada’s Largest Dedicated PCI Compliance Company
Control Gap helps businesses safeguard sensitive data, reduce security risks and avoid fines. We are proud to be Canada’s foremost leader in Payment Card Industry (PCI) compliance validation and advisory services, founded from decades of information security, privacy data protection and payment industry experience. We are home to some of the best and most tested information security talent in the industry.
Control Gap is a privately held company, headquartered in Toronto with hundreds of satisfied customers across North America, including retail and e-commerce merchants, service providers, financial services, healthcare, petroleum, government, and more.