Contact FortConsult if you wish to know: - How to interpret the security requirements in PA DSS - Whether you have the option of exemption from PA DSS certification - How to be PA DSS validated in the quickest and most straightforward manner - How you can minimise your costs in qualifying for PA DSS validation We can also help you obtain PA DSS vali- dation. FortConsult is the only Danish enterprise which is certified by the credit card companies to both conduct audits and security scans of enter- prises' critical payment systems in accordance with PCI DSS - and to check security in payment software in accordance with PA DSS. Vendors that develop or install payment applications should be aware of the Payment Application Data Security Standard (PA DSS), which was issued by the credit card companies and their organisation, the PCI Security Standards Council, in May 2008.   The standard specifies concrete security requirements with respect to integrators, terminal vendors and other types of software developers to make it easier for banks and shops to achieve compliance with the Payment Card Industry Data Security Standard, PCI DSS. Read more about what is required by PA DSS below.   Validating your payment application quickly and effectively FortConsult is the only payment application qualifued security assessor in Denmark that is approved by the PCI Council to carry out the assessment procedures required to validate that a payment application is compliant with the PA DSS on behalf of the credit card companies and the acquiring banks. In addition to guiding you safely through the process to obtain PA DSS validation, we can help you to ascertain: How you should interpret the security requirements in PA DSS Whether you can put your application outside the scope of the PA DSS, e.g. by designing an application that does not process, store or transmit card data How you can obtain PA DSS validation in the quickest and most straightforward manner How you can minimise your costs associated with obtainining PA DSS validation for your application   Our most important piece of advice to you is to gain a full understanding of the PA DSS as soon as possible. This will allow you to know if your payment application needs to be PA DSS validated and have an idea of the changes required to achieve compliance. Incorporating the action plan for obtaining PA DSS validation with your current development strategy will minimize any changes required to make the application compliant and avoid unecessary duplication of effort.   Contact us at info@fortconsult.net if you wish to know more about PA DSS compliance and how best to go about obtaining PA DSS validation.   Benefits - not just strict requirements Although it is a requirement for certain vendors that they comply with the PA DSS, there are also a number of benefits associated with being PA DSS validated: You will have formal documentation stating that you develop secure software You obtain an international stamp of approval by the PCI Council and your software will not prevent PCI DSS compliance You can use the PA DSS validation to gain a competitive advantage and simplify the PCI-DSS compliance process for shops and service providers   Enterprises that are not subject to PA DSS requirements can also obtain the above benefits - although their names will not be published on the PCI Council's list of approved payment applications.   You can read more about the security requirements in PA DSS in the links below, as well as how to obtain PA DSS validation in the easiest possible manner.   About PA DSS Who has to comply with PA DSS? Who does not have to comply with PA DSS? Who lays down the security requirements? What are the security requirements? Benefits of PA DSS validation FortConsult and PA DSS Get a good overall perspective as soon as possible How to prepare for PA DSS validation Contact us - PCI DSS certified in 2004 to perform security scans as the first and only company in Scandinavia. - PCI DSS certified in 2005 to conduct audits as the first and only company in Scandinavia. - Chosen by the bank sector in Denmark to help all Danish bank data centres to acquire PCI DSS validation due to our early PCI DSS certification, our considerable experience in the PCI area and our extensive knowledge of the financial sector. - Permanent PCI DSS service provider to all Danish banks needing PCI DSS assistance. - Has carried out PCI DSS tasks for some of the biggest retail chains in Scandinavia at international level. - Is today the leading PCI DSS service provider in Scandinavia and the Baltic. We have, for instance, certified more than 60 percent of the enterprises on VISA's list of validated Scandinavian service providers. - PA DSS certified in 2008 as the first and only company in Denmark - and among the first 14 in the world.