|
| Privacy Notice |
 |
|
 |
FlowerHaus Security and Compliance
Visa CISP and Payment Card Industry PABP
In an effort to reign in fraud, provide security guidance to merchants, and give cardholders peace of mind, FlowerHaus and VISA instituted the Cardholder Information Security Program (CISP). This program is intended to protect Visa cardholder data--wherever it resides--ensuring that members, merchants, and service providers maintain the highest information security standards. CISP compliance is required of all merchants and service providers that store, process, or transmit Visa cardholder data. To achieve compliance with CISP, merchants and service providers must adhere to the Payment Card Industry (PCI) data security standard, a set of guidelines for safeguarding sensitive data for all card brands, including MasterCard, American Express, and Discover.
There is no formal CISP certification program for payment software applications. However, software vendors may voluntarily submit their applications to Visa for validation against PCI Payment Application Best Practices (PABP). PABP validation is a not a requirement by Visa at this time, although Visa reserves the right to make payment application validation a requirement as needed to support CISP compliance of payment application users.
FLOWERHAUS SOFTWARE VALIDATION / COMPLIANCE
FlowerHaus is a PABP validated application
There is no formal CISP certification program for payment software applications. However, software vendors may voluntarily submit their applications to Visa for validation against PCI Payment Application Best Practices (PABP). PABP validation is a not a requirement by Visa at this time, although Visa reserves the right to make payment application validation a requirement as needed to support CISP compliance of payment application users.
OUR POSITION
A Proactive Approach to End-to-End Security
We are committed to protecting the confidentiality and integrity of cardholder data whenever cardholders make purchases from merchants using FlowerHaus payment software applications. We have taken a proactive approach to security, voluntarily contracting Ambiron, a Visa-approved CISP assessor, to evaluate our solutions. As pioneers in the payment software industry, we worked in cooperation with the card associations to develop PABP guidelines.
OUR COMMITMENT
Our commitment to security expands beyond PABP application validation. We understand that end-to-end security--protecting every link in the payment chain--is critical to protecting cardholder data. Therefore, we also educate our customers on the risks associated with storing sensitive information.
How Our Solutions Measure Up - FlowerHaus
Our software and middleware solutions have been through the PABP process, including audits by Ambiron to evaluate the security surrounding these applications’ storage and processing of cardholder data. Based upon the results of these assessments, Ambiron found that the use of these our applications would not prohibit an entity from meeting CISP requirements. RiTA Server, our highly scalable middleware product, was one of the first applications to be named on Visa’s list of PABP-validated payment applications. |
|
|
|
|
|
