Maintel first in UK to secure card payment accreditation

Maintel first in UK to secure card payment accreditation

London, 8 December 2016: Maintel has become the UK’s first unified communications and network service provider to achieve the latest independent Payment Card Industry Data Security Standard (PCI-DSS) 3.1 accreditation. Two of Maintel’s cloud services, ICON Communicate and ICON Connect are now fully compliant for the secure handling of credit card payments.

Organisations processing credit card payments need to be compliant with PCI-DSS security regulations – but, with over 300 separate controls to be implemented, this is a very difficult and expensive process. By using a service that is already PCI-DSS compliant, firms can save on resource and cost. The successful external compliance assessment of Maintel’s UCaaS platform, ICON Communicate, and managed network services solution, ICON Connect, reflects the provider’s historical dedication to security across its entire portfolio.

Maintel supplies, manages, monitors and updates the underlying technology to ensure that its cloud services continually meet PCI-DSS 3.1 requirements – removing considerable responsibility and risk from its customers.

With PCI compliant solutions, merchants benefit from security information and event monitoring (SIEM) systems for every device, accompanied by rigorous and regular scanning and penetration testing, which provides consistent protection from all known vulnerabilities. Maintel has achieved this certification by focusing on functions such as methodical patch management, configuration hardening and strict role-based access control to customer systems from authorised engineers.  

“For any organisation taking card payments compliance is vital, but it can be hugely costly and time consuming,” said Rufus Grig, Group Strategy Director at Maintel. “We are the first to achieve this accreditation because of our longstanding focus on security, which shortened the journey to achieve full compliance. By shifting the pain of PCI-DSS compliance accreditation to us, organisations can focus their resources on their business. We have already seen that being able to provide certified compliance has won us significant business with our ICON suite of managed communication services.”

Tim Mann, CIO at NFU Mutual said, “PCI DSS compliance and call recordings are very important to us. Giving our employees the ability to take details in a reassuringly safe and concise manner gives our customers greater confidence in our systems, and by extension our wider brand. As a highly governed and regulated financial organisation, it’s a fundamental business requirement.”