The PCI DSS (Payment Card Industry – Data Security Standard) Certification is an industry standard for securing credit card use. This certification was developed by the Payment Card Industry Security Standards Council, a global forum that brings together payments industry stakeholders including Mastercard, Visa, American Express, Discover and JCB to develop and drive adoption of data security standards and resources for safe payments worldwide.
 
The PCI-DSS Standard covers several aspects related to protecting customer confidentiality and data such as the handling of data by the Bank’s systems, guarding against theft of data as well as internet-based intrusions among others.

ControlCase is a Qualified Security Assessor (QSA) and a global provider of Compliance, Information Security and Risk Management Solutions. They assessed and certified Baiduri Bank as PCI-DSS V3.2.1 compliant on 4 October 2022.

Ti Eng Hui, CEO of Baiduri Bank said, “At Baiduri Bank, we have always prioritised investments in data security and protection to ensure our customers’ data is safe. Keeping up with the highest industry data security standards such as PCI-DSS is one of such measures. We have been certified as PCI-DSS compliant since 2014, and will, as part of our ongoing commitment, continue to ensure the stringent requirements are fully embedded into our systems and processes.”

Speaking on the recertification, Simon Hansman, Head of Group Information and Technology Department, Baiduri Bank, said “As technology advances, providing a secure environment for the data we manage is of the utmost importance.” He elaborated, “We are focused on continuously improving our systems and operations to address evolving threats and challenges. This certification represents an important milestone for us and demonstrates the commitment of our teams in meeting and exceeding the PCI-DSS standards.”

The Payment Card Industry Data Security Standard is used by all major card brands as the common security standard for their compliance programmes. PCI-DSS Version 3.2.1, the latest and most current standard consists of steps that mirror security best practices such as building and maintaining a secure network and systems, protecting cardholder data, maintain a vulnerability management program, implementing strong access control measures, regular monitoring and testing of the network and maintaining an information security policy.