MotionPoint’s website and omnichannel translation solution protects the confidentiality, integrity and availability of information assets in our custody. We are committed to protecting your information through demonstrated key technologies and multi-layered safeguards.
Our approach meets rigorous external compliance requirements such as the Payment Card Industry Data Security Standard (“PCI DSS”), the Health Insurance Portability and Accountability Act (“HIPAA”) and more.
MotionPoint successfully completes annual security assessments conducted by an independent PCI SSC Qualified Security Assessor. We demonstrate on-going practices that comply with PCI DSS, including regular vulnerability testing of our networks and systems.
HIPAA/HITECH Business Associate
MotionPoint successfully completes regular independent assessments to ensure we comply with HIPAA Privacy and Security rules. This includes audits to demonstrate our practices are fully HIPAA-compliant.
Privacy Shield Certified Organisation
The Privacy Shield frameworks provide a mechanism to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States.
Visa Global Registry of Service Providers
The Visa Global Registry of Service Providers is the payment industry’s designated source for information on registered and compliant agents that provide payment-related services to Visa clients and merchants.
Security Auditing and Verification
MotionPoint conducts audits based on industry baselines such as PCI DSS and HIPAA, with measures including:
- Employee screening
- Active monitoring of event information
- Security testing
Physical Security
MotionPoint's systems are hosted in secure server environments that are ISO 27001, SSAE 16 and PCI DSS compliant. We continually monitor notifications from various sources and alerts from internal systems.
Third-Party Management
MotionPoint engages third parties to provide and/or support certain components of its hosting services. We only choose vendors that demonstrate maturity in effectively managing complex network hosting and application infrastructures.
These partners must also support stringent service level agreements and security controls that satisfy industry standards and third-party validation.
MotionPoint recognises SSAE 16, PCI DSS, and/or ISO 27001 compliance as standards that best demonstrate a provider's effectiveness in managing complex hosting and application services.
Industry and Government Expertise
MotionPoint implements a security programme that provides flexible and comprehensive security controls to support customers in a variety of industries. These industries abide by security standards such as:
- PCI DSS
- ISO 27001
- GLBA
- FISMA
- FedRAMP
- ITIL
- HIPAA
All demand the protection of confidential and proprietary customer data.
Conclusion
Security compliance standards can form a complex maze of requirements and regulations. Our expert security measures navigate these standards to ensure your data remains secure.
Last updated on May 22, 2019