The Truth about Security & Compliance Certifications

The security of consumer, business and organizational data is critical to creating and growing trust. As your partner in technology, we help our clients create an environment that can safely accept, process, store and transmit the data you need to run your business and help you limit risk.

Standards for protecting financial and cardholder data are regulated by the Payment Card Industry Security Standards Council (PCI SSC). For more than a decade, we have worked closely with the PCI SSC and other regulatory bodies to ensure our processes and systems are compliant with the highest levels of PCI security.

Certifications and Value

  • Certified Third Party Agent (TPA) Encryption Service Organization (ESO)

    • We perform cryptographic key management, secure injection and loading of encryption keys into point-of-sale (POS) devices and encrypt Personal Identification Number (PIN) pads. ESOs perform these functions in support of the deployment of POS PIN entry devices (POS PEDs) or PIN pads to merchants.
  • Certified PCI P2PE Component Provider

    • A PCI Point-to-Point Encryption (P2PE) solution cryptographically protects data from the point where a merchant accepts the payment card to the secure point of decryption. PCI P2PE can significantly help merchants reduce the PCI DSS validation effort of their cardholder data environment. We evaluate your unique combination of devices, applications and processes to ensure compliance as part of our service.
  • PCI DSS Compliant

    • The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store or transmit credit card information maintain a secure environment. We maintain compliance to safeguard equipment from arrival at our depots through to installation at your locations.

Direct Source is Registered with the Following Financial Institutions

  • Fiserv
  • Chase Paymentech
  • Bank of America
  • Elavon

Direct Source participates in a detailed and thorough audit every two years to maintain PCI compliance. We continually make improvements to our business that support the highest levels of security for our partners and clients. If you have any questions about security, compliance or the products and technologies that can help you maintain the right levels of protection, we can help. 


< Back to Newsroom