Travel and event management company TAG has been awarded a merchant certificate showing it is compliant with payment data security standards.
The company joins a small selection of TMCs worldwide to be externally audited and accredited PCI DSS (Payment Card Industry Data Security Standard) compliant.
TAG is certified Level 3 under PCI DSS, which is a set of standards that require merchants and service providers that store, process, or transmit customer payment card data to adhere to strict information security controls and processes. It was created by the founding brands of the PCI Security Standards Council, which includes American Express, Discover Financial, JCB International, MasterCard Worldwide and Visa, Inc.
TAG said it has commissioned “continuous” internal and external tests to ensure any security risks are tackled. The PCI DSS certificate was awarded following completion of a third-party audit by Information Risk Management (IRM).
CTO Stuart Mackay said: “With the added compliance security measures, TAG’s customers will now benefit from the most advanced security and data management practices on the market. As technology advances, companies become more vulnerable to external threats and this is something we take very seriously at TAG. We are very proud to join a hand full of TMCs that can offer this level of security, reinforcing our positioning as a key player in the travel industry.”
Andrew Finnan, head of enterprise risk at IRM, added: “Obtaining independent certification against the PCI Data Security Standard is not an easy task and we commend TAG for opting for independent certification whilst being eligible to self-assess. TAG demonstrated a high level of commitment during their 2019 assessment in ensuring their customers’ payment card data is processed and protected appropriately.”
The news comes after TAG launched a new mobile app earlier this year.
tag-group.com