Story image

Kiwi cloud success story granted top security certification

23 Apr 2018

Hospitality cloud solutions provider STAAH have recently become PCI DSS Certified (Payment Card Industry Data Security Standard).

This means that the Kiwi start-up success story is approved to process credit card payments in a way that provides data security to prevent breaches that could compromise business sensitive data.

The certificate was awarded after a full-scale audit by a qualified security assessor (QSA) as required to attain this certification.

The QSA validated all areas of STAAH’s platforms that come in contact with cardholder data to ensure proper controls and security measures are in place to protect the customer.

The PCI certification audit includes reviews of how the software is developed, the process in which developers are trained, and technical and procedure controls

“Data is fast becoming the single most important asset for all companies, and its protection is paramount,” says STAAH founding director Gavin Jeddo.

“We recognise the importance of data and its security, being in an industry where online transactions are business critical. Getting the PCI DSS certification for the fourth year in a row demonstrates our promise to ensure data security is never compromised on a STAAH platform.”

PCI compliance means a company has taken steps to help protect cardholder data (CHD) following the guidelines set by the PCI Council.

Whereas PCI certification is a rigorous and comprehensive process that involves a full-scale audit by a qualified security assessor (QSA).

Being fully PCI certified means that guests’ card data is secure and that banks are more likely to issue merchant facilities to your property.

STAAH is a New Zealand-based technology company that specialises in cloud-based channel management and booking engines for accommodation providers.

Founded by Gavin Jeddo in 2008, a pioneer in the field of distribution technology, STAAH’s technology powers a property’s distribution through online travel agencies (OTA), direct bookings and digital marketing services.

Today, STAAH operates in more than 70 countries including New Zealand, India, Malaysia, Philippines, Thailand, Indonesia and UK.

Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Ensign and IronNet partner to create cyber analytics capabilities
The Singapore-based joint venture will form a Cyber Analytics Center for Excellence focused on securing regional enterprises from sophisticated cyber threats.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.