atsec announces that BilltoBill’s compliance to Payment Card Industry Data Security Standard (PCI DSS) v1.2 has been assessed successfully by atsec information security.
As a well-known payment service provider in China, BilltoBill provides comprehensive, outsourced payment services to merchants in China and the global market.
Yang Lei, the CEO of BilltoBill said, "As a leading payment services provider in credit card e-payment processing, BilltoBill has an excellent track record in China for its risk management, fraud control, as well as network and data security. We are partnering with atsec for the PCI DSS project because of their knowledge, qualification and their professional project management. We will continue working with atsec to maintain our network and data security."
atsec is a qualified security assessor (QSA) and approved scanning vendor(ASV) accredited by the PCI Security Standards Council to provide formal assessment in the U.S., Europe and China. As a vendor-independent consulting company, atsec’s consultants have over ten years of expertise in information security and have operated in the design and implementation of information security management systems in large companies. Since atsec does not sell or produce any products, it has the necessary independence in the field of information security.
Yan Liu, atsec Lead QSA on the project notes: “Assessment as per PCI DSS can induce the payment service provider to improve processes and implementations resulting in long term benefits, quality and security improvements to protect cardholder data. At atsec, we are proud of our status as the world leader in security auditing, evaluation, testing and consulting services, and maintaining that status requires us not only to pay attention to ongoing projects, but also to constantly monitor developments in security standards and technologies. ”
About atsec information security
atsec information security is an independent, standards-based information technology security services company that combines a business-oriented approach to information security with in-depth technical knowledge and global experience. atsec was founded in Munich (Germany) in 2000 and has extensive international operations with offices in the U.S., Germany, Sweden and China.
atsec offers evaluation and testing services leading to formal certification for IT security including evaluation under Common Criteria schemes in the U.S., Germany, and Sweden; cryptographic module and algorithm testing under the Cryptographic Module Validation Program of the National Institute of Standards and Technology (NIST) in the U.S. and Communications Security Establishment Canada (CSEC) in Canada; and compliance validation to the Payment Card Industry (PCI) Data Security Standard.
atsec also offers secure code review, ISO/IEC 27001 ISMS consulting, and penetration testing and scanning services.
atsec works with leading global companies such as IBM, Apple, Microsoft, Hewlett-Packard, Oracle, Cray, BMW, SGI, Vodafone, Swisscom, RWE, and Wincor-Nixdorf.
BilltoBill provides a comprehensive, outsourced payment service to merchants selling online or via call centers in China. We focus on quality merchants who provide a consistent consumer experience, i.e. clear pricing, services and professional handling of consumer enquiries. Our payment service enables merchants to maximize revenues in China by offering their customers choice from a variety of payment methods, i.e., China bank card, international credit card, telephone payment, cell phone payment and offline payment. BilltoBill is a leading e-Payment PSP in China, BilltoBill has won the Best Payment Gateway Awards from CAAC in 2006, 2007 and 2008. BilltoBill provides secure and easy-to-use credit/debit card payment processing to many airlines for direct air ticket sales via websites and call centers.