You’ve worked hard to build your business; make sure you secure your success by securing your customers’ payment card data. Your customers depend on you to keep their information safe. The version of InfoGenesis POS software that is hosted in the Agilysys data center enables you to repay their trust with compliance with the PCI Data Security Standards.
The SaaS version of InfoGenesis POS software hosted in the InfoGenesis data center has been validated to be compliant with the credit card industry’s Payment Application Data Security Standard (PA-DSS). The PA-DSS standard establishes a set of security benchmarks to which a payment application must be written.
The SaaS version of InfoGenesis POS software is hosted in our state-of-the-art data center in Las Vegas, NV. The Agilysys data center has received PCI-DSS validation and SAS-70 certification:
Agilysys has attained and maintained its status as a PCI DSS Compliant Service Provider for its operations at the InfoGenesis SaaS data center. The PCI-DSS is the credit card industry’s benchmark for secure business practices and computer and network systems administration. As a “Level 1” service provider, Agilysys must undergo the most stringent and far-reaching type of PCI-DSS audit. This type of audit requires a yearly onsite inspection, an annual external penetration test and quarterly vulnerability scans by a third-party auditor.
SSAE No. 16 Certification
Agilysys has also attained a Statement on Standards for Attestation Engagements, Number 16 (SSAE No. 16) certification. SSAE No. 16 is a widely recognized auditing standard developed by the Auditing Standards Board of the American Institute of Certified Public Accountants (AICPA). A service auditor’s examination performed in accordance with SSAE No. 16 is widely recognized because it represents that an organization has been through an in-depth audit of their control objectives and activities, including controls over information technology and related processes. In today’s global economy, service organizations or service providers must demonstrate that they have adequate controls and safeguards when they host or process data belonging to their customers. In addition, the requirements of Section 404 of the Sarbanes-Oxley Act of 2002 make SSAE No. 16 audit reports even more important to the process of reporting on the effectiveness of internal control over financial reporting.