PCI Compliance Statement
Effective Date: May 15, 2024
Infinity Marketing Firm
(“we,” “us,” or “our”) is committed to maintaining the highest level of security for our clients’ payment card information. We adhere to the Payment Card Industry Data Security Standard (PCI DSS) to ensure that all credit card transactions are processed securely.
1. What is PCI DSS?
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment. The PCI DSS is managed by the PCI Security Standards Council, which was founded by major credit card companies, including Visa, MasterCard, American Express, Discover, and JCB.
2. Our Commitment to PCI Compliance
At Infinity Marketing Firm, we are fully committed to maintaining PCI DSS compliance. We understand the importance of safeguarding our clients’ sensitive payment information and have implemented stringent security measures to protect against unauthorized access and data breaches.
3. Measures We Take to Ensure PCI Compliance
To maintain PCI DSS compliance, we have implemented the following measures:
- Encryption: We use strong encryption methods to protect sensitive data during transmission over public networks.
- Access Controls: We have strict access controls in place to ensure that only authorized personnel have access to payment card information.
- Data Retention: We do not store sensitive cardholder data such as full credit card numbers, CVV codes, or magnetic stripe data after a transaction is processed.
- Regular Audits: We conduct regular security audits and vulnerability assessments to identify and address potential security risks.
- Secure Payment Gateways: We use secure payment gateways that are PCI DSS compliant to process all credit card transactions.
- Security Awareness Training: We provide ongoing security awareness training to our staff to ensure they understand the importance of data security and PCI compliance.
4. Third-Party Service Providers
We work with third-party service providers who are also PCI DSS compliant to process payments securely. We ensure that our partners are fully compliant with PCI DSS requirements and maintain the same level of security that we uphold.
5. Reporting and Incident Response
In the event of a data breach or security incident involving payment card information, we have established procedures to promptly respond to and report the incident in accordance with PCI DSS guidelines. Our incident response plan includes notifying the appropriate parties, investigating the breach, and taking corrective actions to prevent future incidents.
6. Contact Us
If you have any questions or concerns regarding our PCI DSS compliance or how we handle payment card information, please contact us at:
Infinity Marketing Firm
Tyler Carpenter & Clint Hunter