PCI DSS 3.2

Level 1 Compliance

PCI DSS Certified

Artefacts, as a service provider has fully certified its private cloud infrastructure, business processes, software development methodologies and delivery methods for the card and payments industry with all the standards defined by PCI DSS 3.2 guidelines. Artefacts has implemented modern infrastructure with the latest and greatest tools and technologies to support PCI 3.2 guidelines. Strict methods of encryptions and end-to-end tokenization are implemented in the Artefacts infrastructure that provides our clients and auditors peace of mind. The private cloud infrastructure of Artefacts has a disaster recovery built-in as per the guidelines to help our clients and merchants with their business continuity.

The Attestation on Compliance (AoC) and Report on Compliance (RoC) are available on request to authorized stakeholders from Artefacts.

SOC 2 TYPE II

Artefacts primary and disaster infrastructure is built on large data centers and hosting facilities that are SOC 2 Type II compliant. Banks, auditors and third party governance companies are provided reports every year from Artefacts on the status of compliances. The variances of compliances each year are recorded and implemented as per the timeliness and guidelines provided to Artefacts by the industry stakeholders.

The compliance attestations for SOC 2 TYPE II are available on request to authorized stakeholders from Artefacts.

EI3PA and others

Experian has its own certification requirements for data access to be complied by Artefacts as a service provider. The compliance requirement entails an extended requirements from PCI as regards to how Atefacts software has to be coded and implemented for accessing sensitive data from Experian. Artefacts had met with all the compliance requirements and will receive the certification soon from Experian.

Several other payment processors and banks have their own custom requirements which Artefacts already complies as a service provider.