Compliance (PCI Certification)
For Data Security
As the wine industry’s leading integrated consumer direct business platform, we believe it is mission critical to protect consumers’ sensitive credit card data every moment of every day.
inery Solutions business platform is the first fully integrated ecommerce platform in the wine industry to achieve PCI Compliance Certification. The PCI Standard is the result of a collaborative effort formed by the five major credit card companies (Visa International, MasterCard Worldwide, American Express, Discover Financial Services and JCB) to cultivate a well-organized methodology for protecting sensitive payment and consumer data in an effort to prevent electronic payment fraud. All merchants, entities and software solutions that process, store or disseminate electronic payment data must be PCI- DSS compliant.
We use an outside qualified security assessor (QSA) to ensure our systems hold up to the most rigorous scrutiny possible. This same level of scrutiny is just not achievable with self-certification using non-qualified staff.
As PCI Compliance is not a one-time task, but an ongoing process, we run monthly vulnerability scans and address all issues in a timely manner. Additionally, we review all 3rd party scans furnished by our clients and partners and take action as required.
As an affirmation of our ongoing commitment to protect consumer data, we provide regular communications to our clients and partners and share industry “best practices” for PCI security and offer concrete actions that can be taken to better protect consumers’ data.