CHICAGO AND SHANGHAI (September 16, 2009) - China UnionPay Data Services Co., Ltd. (CUPDATA), China's largest third-party processor of bankcard accounts, has validated compliance with the Payment Card Industry Data Security Standard (PCI DSS). Trustwave, the leading provider of on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world, performed the PCI DSS compliance validation.
PCI DSS is the payment card industry security requirement for entities that process, transmit and/or store cardholder data, and has been endorsed by all the major card brands - Visa Inc., MasterCard Worldwide, Discover Network, American Express and JCB. Under the PCI DSS, payment service provider compliance requirements are segmented into two levels based on the number of transactions processed and/or transmitted annually.
To validate compliance with the PCI DSS, CUPDATA had to demonstrate compliance with 12 security requirements by thoroughly reviewing its IT environment and information security policies and procedures. To maintain their compliance, CUPDATA has enrolled in Trustwave's on-demand compliance management solution, TrustKeeper® to have the necessary tools to support on-going compliance such as quarterly network vulnerability scans.
"Maintaining a secure environment has always been a priority for CUPDATA, but compliance validation with the PCI DSS is a foundation for our overall security posture," says Haijian Jiang, Assistant President at CUPDATA. "Trustwave's proprietary technology will help our organization implement long-term security solutions to help protect our customer's data."
"As the largest third-party processor in China, CUPDATA understands the need to protect the sensitive data involved in everyday commerce," says Robert J. McCullen, chairman and CEO of Trustwave. "By validating PCI DSS compliance, CUPDATA has shown that security is top of mind and protecting consumer data is taken very seriously."
"As the PCI DSS continues to take shape in our region, CUPDATA has taken a leadership role by validating and maintaining compliance," says Sophia Chen, director of Northern Asia Pacific for Trustwave.
About CUPDATA
China UnionPay Data Co., Ltd (CUPDATA), a holding subsidiary of China UnionPay (CUP), was established in Shanghai in January 2003. As a professional financial data processing company, CUPDATA provides safe and stable processing platform to our clients. CUPDATA is able to process issuing data related to various products, such as credit card, debit card, IC card, quasi-card, virtual card and combination cards, to render different services in connection with clients information, application processing, data preparations for card issuing, credit analysis, account management, accounting process, report management, encryption key management, collection service and statement creation. At present, CUPDATA leads an absolute leading position in domestic card issuing-data processing outsourcing market. Through 30 June, 2009, CUPDATA has signed card-issuing outsourcing contracts with 66 financial institutes both at home and abroad, including Industrial Bank of China, Minsheng Bank, Huaxia Bank, Postal Savings Bank of China, ABN AMRO Bank, Citibank and BEA etc., among which 58 have gone alive on CUPDATA's platform with card number totals 17.3 million.
About Trustwave
Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.
