PCI Booking PCI Compliance solution by Geoff Milton

Home > Winners > #46053


DESIGN DETAILS
DESIGN NAME:
PCI Booking

PRIMARY FUNCTION:
PCI Compliance solution

INSPIRATION:
As a company we were inspired by the lack of protection for both customers and businesses have when transferring confidential client information in the travel sector. Having been or known a victim of credit card fraud we decided to make a stand in an industry we understand and care about.

UNIQUE PROPERTIES / PROJECT DESCRIPTION:
PCI Booking offers online travel agents, travel management companies, computer reservation systems, hotels and Channel Managers a software solution to remove all payment card data from their systems. Our software ensure end-to-end protection of sensitive customer information and dramatically reduces the cost of PCI compliance.

OPERATION / FLOW / INTERACTION:
For Inbound services, PCI Booking will mask credit card data from all user web screens and API calls, store the card data within the PCI Booking service, represent each card data item as a token and return the tokens to the customer applications. For Outbound services, the customer will be able to use their API in order to send sensitive data or to securely display card data to hotels. API requests will be submitted through the PCI Booking service with a token attached to the reservation instead of the card data. PCI Booking will replace the token with the real card data and relay the request to its destination.

PROJECT DURATION AND LOCATION:
PCI Booking software was successfully launched to the travel market in the summer of 2014. The software is a natural development from our parent company InterFAX's success of delivering PCI compliant enterprise-class messaging services for the past 20 years. The project started through an informal discussion with Visa over a parent company product. During this meeting they made the jaw dropping statement that not 1 of their xml suppliers was PCI compliant. From this we flew our CEO over to VISA HQ in London to discuss these xml issues with their Senior Forensic of travel and hospitality. From this point on we made it our priority to provide a PCI DSS Level 1 compliant solution that could be accredited with Attestation of Compliance (AOC) & listed with Visa Europe.

PRODUCTION / REALIZATION TECHNOLOGY:
PCI Booking offers a fully integrated card tokenisation solution to remove PCI scope from client businesses. PCI Booking is a PCI compliant level 1 solution for inbound and outbound services.The principal objective is to provide a PCI secure shield that prevents customer payment card data being open to PCI scope whilst giving our clients immediate access to relevant payment card data when required.

SPECIFICATIONS / TECHNICAL PROPERTIES:
PCI DSS LEVEL 1 COMPLIANT SOLUTION: Solution PCI Booking solution is PCI DSS Level 1 accredited with Attestation of Compliance (AOC) & listing with Visa Europe. Compliant with EU data protection directive which restricts personal data storage within the countries covered by the directive.

TAGS:
PCI compliance, PCI Booking, PCI scope, messaging solutions, PCI DSS accredited, Scope reduction, PCI shield, payment details, iFrame, payment capture

RESEARCH ABSTRACT:
The PCI Booking project was designed around the requirement for a software solution specific for the travel industry, that was PCI DSS Level 1 compliant solution and could be accredited with Attestation of Compliance (AOC) and listed with Visa Europe. The design was based on market research, client research and legal requirements. Pilot schemes were used to refine our software models in industry environments

CHALLENGE:
The most difficult aspect of the project was convincing the travel industry they have a real PCI compliance issue that needs addressing.

ADDED DATE:
2016-02-23 12:38:57

TEAM MEMBERS (4) :
Geoff Milton, Jason Perhar, Naseer Ahmad and

IMAGE CREDITS:
Geoff Milton, 2015.

Visit the following page to learn more: http://www.pcibooking.net
VOTE FOR THIS DESIGN

VOTE FOR THIS ENTRY

CLIENT/STUDIO/BRAND DETAILS
NAME:
PCI Booking

PROFILE:
Removing travel companies from PCI scope.PCI Booking is a specialist service provider that puts its customers in control of regulatory compliance responsibilities, meeting the needs of the Payment Card Industry Data Security Standard (PCI DSS). Operating from a secure cloud platform, they provide a range of XML services, messaging and payment solutions used extensively by the travel sector – online travel agents, travel management companies, channel managers, and hotels. PCI Booking offers you solutions that take your travel business outside the scope of PCI DSS, saving time and money, avoiding PCI audit and the possible loss of reputation and revenue from a data breach. PCI Booking have an Attestation of Compliance (AOC) through their parent company InterFAX, meaning they have the highest level of PCI accreditation: Level 1 compliance. The PCI Booking cloud platform, allows their solution to be inexpensive to deploy and simple to implement. PCI Booking offers OTAs,TMCs, Hotels, CRS and Channel Managers solutions to remove all payment card data from all of their systems, dramatically reducing the cost of PCI compliance. Solutions include tokenization and card storage services; messaging services to securely handle and route payment card data to and from external parties and systems; and a secure browser ­based Portal to allow hotels to safely view reservation related messages along with the payment card data associated with their reservations. Cyber security threats are increasing and demands for PCI compliance are becoming more important to travel businesses. PCI Booking gives you the solutions to tackle both and allowing you to concentrate on your core business.

NOMINATION DETAILS

Pci Booking Pci Compliance Solution by Geoff Milton is a Nominee in Mobile Technologies, Applications and Software Design Category.

· This project is currently confidential as results have not been announced yet. Images and further details of the project is not available for public yet, please check back later. If you are the owner of this design, please login to view the images.

· The profile and other works by Geoff Milton is also kept secret. This information will also be available later.
AWARD DETAILS

Pci Booking Pci Compliance Solution by Geoff Milton is Winner in Mobile Technologies, Applications and Software Design Category, 2015 - 2016.



· Press Members: Login or Register to request an exclusive interview with Geoff Milton.

· Click here to view the profile and other works by Geoff Milton.
SOCIAL
+ Add to Likes / Favorites | Send to My Email | Comment | Testimonials | View Press-Release | Press Kit
See other A' Design Award and Competition WinnersA' Design Award Presentation Submit Your Designs
 
HOMEPAGE | SITEMAP | JURY | VOTING SYSTEM | EVALUATION CRITERIA | METHODOLOGY | BENEFITS FOR WINNERS | BENEFITS FOR SPONSORS | PRESS-KITS | NEWSLETTER | RESOURCES | DOWNLOADS | DATES | FEES | PAYMENT | WINNERS SERVICES | TRENDS | RANKINGS | DESIGNER PROFILES | SUPPORT | PRIVACY POLICY | PAYMENT METHODS | THE AWARD | JURY | CATEGORIES | REGISTRATION | PRESS | WINNERS | PUBLICATIONS | ENTRY INSTRUCTIONS | DATES & FEES | ELIGIBILITY | DESIGN REPORTS | MUSEUM OF DESIGN | GROUPS | INSTITUTIONS | COMPANIES | WINNER DESIGNS | SOCIAL TOOLS | BENEFITS | SPONSOR AN AWARD | CUSTOM COMPETITIONS | LIST OF COMPETITIONS | SPONSORED COMPETITIONS .
Follow us : Twitter Twitter | Twitter Facebook | Twitter Google+.
Share |