Global List Of Pci Dss Validated Service Providers
Global List of PCI DSS Validated Service Providers
As Of 2/4/2010
The companies listed below were validated as being PCI DSS compliant by a QSA as of the "VALIDATION
DATE". Service providers are required to revalidate their compliance to Visa on an annual basis, with the next
annual Report on Compliance (ROC) due to Visa one year from the "VALIDATION DATE". ROCs that are from
1-60 days late are noted in yellow and ROCs that are from 60-90 days late are noted in red. Entities with ROCs
over 90 days past due are removed from this list. Entities are listed in each Visa region where they have been
registered by at least one client, including: AP - Asia Pacific, CEMEA - Central Europe / Middle East / Africa,
LAC - Latin America / Caribbean, NA - North America - Canada / United States. Visa client's are responsible for
and are required to use compliant service providers and to follow up with service providers directly if there are
any questions about their compliance status.
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
1ShoppingCart.com
June 30, 2009
Other
Security Metrics
Payment Gateway
1st Americard
March 31, 2009
Switching
Fortrex Technologies
3Delta Systems
September 30, 2009 Authorization
Fortrex Technologies
MOTO Payment Processing
Payment Gateway
Switching
800 Call KC
May 31, 2009
MOTO Payment Processing
Accudata Systems
Payment Gateway
A3 IT Solutions
November 30, 2009
Hosting Provider
Trustwave
AAFES
July 31, 2009
IPSP (E-commerce)
IBM Internet Security
Systems
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
ABC FINANCIAL
May 31, 2009
Clearing & Settlement
Trustwave
SERVICES, INC
ABC Virtual
November 30, 2008
Payment Processing
SecurityMetrics
Communications, Inc.
Accel Networks
January 31, 2010
Other
Trustwave
ACCENT Marketing
May 31, 2009
MOTO Payment Processing
Crowe Horwath
Accertify
February 28, 2009
Authorization and Settlement Halock Security Labs
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
1 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Accesso, LLC
February 28, 2009
Payment Gateway
Trustwave
AccountNow
June 30, 2009
Other
Trustwave
Acculynk
February 28, 2009
Authorization
Verizon Business
Payment Gateway
ACH Direct
November 30, 2008
Merchant Payment
RSM McGladrey
Processing
ACI Worldwide
April 30, 2009
Merchant Payment
Solutionary, Inc
Processing
ACI Worldwide - Winn-Dixie September 30, 2009 Payment Gateway
FishNet Security
Environment
Process Magnetic-Stripe
Transactions
Switching
ACS Government and
August 31, 2009
Authorization
Jefferson Wells
Community Solutions
Clearing & Settlement
Hosting Provider
Issuing Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Acxiom ICS/BNS
August 31, 2009
Other
Verisign
Proprietary - 1 & 2
Adeptra
December 31, 2009
Other
Protiviti
Adteractive, Inc.
January 31, 2010
Other
Digital Resources Group
(DRG)
Aegis Communications
December 31, 2008
Other
K3DES
Affinion Loyalty Group
February 28, 2010
Loyalty Programs
Trustwave
(formerly Trilegiant)
Affinity Solutions
November 30, 2008
Loyalty Programs
Solutionary
Agilysys, Inc.
July 31, 2009
Payment Gateway
Trustwave
AHT Services
July 31, 2009
Payment Gateway
Trustwave
Airlines Reporting
February 28, 2009
Authorization
Verisign
Corporation
Clearing & Settlement
Akamai
September 30, 2009 Other
Verizon Business
Alaska Option Services
April 30, 2009
EFT Processing
K3DES
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
2 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Aliaswire
September 30, 2009 Authorization
IGX Global
MOTO Payment Processing
Payment Gateway
Alliance Data - Remittance
May 31, 2009
Other
Cybertrust
Processing
Alliance Data - Retail
January 31, 2010
Authorization
Verizon Business
Services
Clearing & Settlement
Issuing Processing
Loyalty Programs
AllianceOne Inc.
May 31, 2009
Other
Tevora Business Solutions
Alta Resources
April 30, 2009
Other
IBM Internet Security
Systems
Amazon.com
October 31, 2009
Other
IOActive, Inc.
AmegyBank
December 31, 2008
Payment Processing
Verizon Business
American Bancard
June 30, 2009
Other
Enterprise Risk Management
Americaneagle.com
November 30, 2009
Hosting Provider
Fortrex Technologies
Other
Amerinational Management January 31, 2009
Payment Gateway
Self-Assessment
Services, Inc.
Andera, Inc.
September 30, 2008 Other
Self-Assessment
Applied Merchant Systems, July 31, 2009
Clearing & Settlement
Information Exchange
Inc.
Other
APPSware Wireless, LLC.,
July 31, 2009
Clearing & Settlement
Trustwave
dba Apriva
IPSP (E-commerce)
Loyalty Programs
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Arab Financial Services
July 31, 2009
Payment Processing
SISA
Company
Aria Systems
December 31, 2009
Payment Gateway
TrustWave
Ariba Inc
May 31, 2009
Other
Payment Software company
(PSC)
Arise Virtual Solutions
May 31, 2009
Other
Verisign
Armenian Card CJSC
December 31, 2009
Authorization
Informzaschita
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
3 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Armenian Card CJSC
December 31, 2009
Clearing & Settlement
Informzaschita
Issuing Processing
Switching
Art Technology Group (ATG) November 30, 2008 Hosting Provider
Payment Software company
(PSC)
Payment Gateway
Artez Interactive Inc
December 31, 2009
Payment Gateway
Dyntek
Arvato Finance Services
July 31, 2009
Authorization
Acertigo AG - An EXCELSIS
Limited
Company
Clearing & Settlement
IPSP (E-commerce)
ASIAPAY (HONG KONG)
November 30, 2008
IPSP (E-commerce)
Trustwave
LTD
Payment Gateway
Settlement Services
Asociacion Cibao de
September 30, 2009 Issuing Processing
IBM Internet Security
Ahorros y Prestamos
Systems
Assist
July 31, 2009
Payment Gateway
SRC Germany
AT&T Hosting and
September 30, 2009 Hosting Provider
Trustwave
Application Services
AT&T Managed Hosting
October 31, 2009
Hosting Provider
Trustwave
AT&T Managed Services -
October 31, 2009
Other
Trustwave
AT&T Encryption Services
AT&T Managed Services -
July 31, 2009
Other
Trustwave
AT&T Enhanced VPN
Services, AT&T VPN
Services, AT&T Private
Network Transport Services
AT&T Managed Services -
May 31, 2009
Other
Trustwave
AT&T Network Based IP
VPN Remote Access
Service / AT&T VPN
Tunneling Service
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Endpoint Security
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Intrusion Detection
Services/INTRUSION
PREVENTION SERVICES
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Intrusion Prevention
Services
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
4 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
AT&T Managed Services -
July 31, 2009
Other
Trustwave
IP Telephony and LAN
Services
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Managed Router Services
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Network Based Firewall
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Premises Firewall
AT&T Managed Services -
July 31, 2009
Other
Trustwave
Transaction Routing Service
AT&T Managed Services -
July 31, 2009
Other
Trustwave
VoiceTone
ATOS ORIGIN SERVICES
April 30, 2009
Authorization
TUV Rheinland
(M) SDN BHD
Clearing & Settlement
Hosting Provider
Issuing Processing
AudienceView Ticketing
August 31, 2009
Clearing & Settlement
Deloitte & Touche LLP
Corporation
Hosting Provider
Auric Systems International
January 31, 2009
Other
Self-Assessment
Authorize.NET
November 30, 2009
Payment Gateway
Trustwave
Autoscribe Corporation
June 30, 2009
Other
Fortrex Technologies
Payment Gateway
BA Merchant Services
March 31, 2009
Payment Processing
Trustwave
BankCard Services, Inc
May 31, 2009
Other
Trustwave
BankersBank Card Services November 30, 2008 Back Office Services for
Self-Assessment
marketing and collection
Bankserv
September 30, 2009 Merchant Payment
Payment Software Company
Processing
(PSC)
Beanstream
September 30, 2009 IPSP (E-commerce)
SPIGuard Security Solutions
Inc
MOTO Payment Processing
Payment Gateway
BearingPoint ePay
November 30, 2008
Internet Payment Processing Trustwave
Benson Records
November 30, 2009
Other
FishNet Security
Management Center
BillMatrix
February 28, 2009
Bill Payment Processing
Trustwave
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
5 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Blackbaud - eTapestry
August 31, 2009
Trustwave
Blackbaud - OnDemand
October 31, 2009
Trustwave
Blackbaud Payment
February 28, 2009
Payment Gateway
Trustwave
Services
Blackboard
May 31, 2009
IPSP (E-commerce)
Trustwave
Payment Gateway
Blackhawk Network
May 31, 2009
Verizon Business
BLACKSTONE MERCHANT May 31, 2009
SecurityMetrics
SERVICES, INC.
Blue Bamboo, Inc
October 31, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
Bluefin Payment Systems
October 31, 2009
Payment Gateway
403 Labs
BluePay
May 31, 2009
Other
Trustwave
Payment Gateway
Braintree Payment Solutions February 28, 2009
Payment Processing
Trustwave
Brinkman Financial
January 31, 2009
Back Office Charge-backs
K3DES
Internet Payment Processing
BServ Credit Card Services, October 31, 2009
Authorization
Trustwave
Inc.
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
BSG Payments (formerly
November 30, 2009
Payment Gateway
Trustwave
Billing Concepts)
BTB Soft, Inc. DBA: B2B
October 31, 2009
Other
IGX Global
Soft
Payment Gateway
Business Data Record
November 30, 2009
Other
RSM McGladrey
Services
Cale Access AB (Cale
August 31, 2009
Payment Gateway
Trustwave
Systems)
Process Magnetic-Stripe
Transactions
Caledon Card Systems
May 31, 2009
Authorization
MTS Allstream
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
6 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Caledon Card Systems
May 31, 2009
Process Magnetic-Stripe
MTS Allstream
Transactions
Calypso Canada
January 31, 2010
Switching
Trustwave
Capital Card Services
April 30, 2009
IPSP (E-commerce)
Trustwave
Other
Card Management Corp.
August 31, 2009
Other
Crowe Chizek
Card One Plus
January 31, 2009
Payment Processing
Self-Assessment
Card Tranz, Inc.
September 30, 2009 Hosting Provider
Trustwave
IPSP (E-commerce)
CardCana Corporation
November 30, 2009
Authorization
IGX Global
Payment Gateway
Cardinal Commerce Corp.
December 31, 2009
Verified by Visa Merchant
Payment Software Company
Services
(PSC)
Cardtronics EFT
May 31, 2009
Other
K3DES
Process Magnetic-Stripe
Transactions
Switching
Cardworks Processing
August 31, 2009
Authorization
Trustwave
Clearing & Settlement
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Cardworks Servicing LLC
February 28, 2009
Other
Trustwave
Carlson Marketing
March 31, 2009
Loyalty Programs
Trustwave
Worldwide (Visa Data Track)
Carlson Marketing
June 30, 2009
Visa Extras
Trustwave
Worldwide (Visa Extras)
Cart 32
August 31, 2009
Hosting Provider
Payment Software company
(PSC)
IPSP (E-commerce)
Payment Gateway
Process Magnetic-Stripe
Transactions
CartManager
February 28, 2009
Payment Processing
Trustwave
CashLINQ Group, LLC
August 31, 2009
MOTO Payment Processing
SecurityMetrics
Payment Gateway
Process Magnetic-Stripe
Transactions
CASHNet
December 31, 2009
IPSP (E-commerce)
Trustwave
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
7 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
CASHNet
December 31, 2009
Process Magnetic-Stripe
Trustwave
Transactions
CBC Companies, Inc
April 30, 2009
Other
Verizon Business, Inc
CBCInnovis, Inc.
April 30, 2009
Other
Verizon
CBORD Group
February 28, 2009
Back Office Services
Trustwave
Cboss
November 30, 2009
Hosting Provider
SecurityMetrics
CCBill
January 31, 2009
Authorization
Chief Security Officers
Clearing & Settlement
Internet Payment Processing
CDMS MERCHANT
December 31, 2009
Other
Enterprise Risk Management
SERVICES, INC.
CDW Hosting and Managed October 31, 2009
Hosting Provider
Trustwave
Services
Center Partners
October 31, 2009
Other
Coalfire
Central Coast Processing
April 30, 2009
Payment Gateway
403 Labs
Process Magnetic-Stripe
Transactions
Central States Indemnity
October 31, 2009
Other
FishNet Security
Centrix Bank – LockBox
May 31, 2009
MOTO Payment Processing
SecurityMetrics
Service
Payment Gateway
Century Bankcard Services
May 31, 2009
Clearing & Settlement
Information Exchange
Other
Certain Software
October 31, 2009
Payment Gateway
Payment Software Company
(PSC)
Certified Payments
September 30, 2009 IPSP (E-commerce)
Trustwave
CHARGE Anywhere
April 30, 2009
Payment Gateway
Trustwave
Chase Loyalty Solutions
December 31, 2009
Authorization
Trustwave
Clearing & Settlement
Loyalty Programs
Payment Gateway
Switching
Chase Paymentech
January 31, 2009
Gift Card Processing
Trustwave
Solutions, LLC.
Internet Payment Processing
Payment Processing
Checkfree - Internet
November 30, 2008
Customer Relationship
Verizon
Account Management
Management
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
8 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Chip Card Ad Beograd
April 30, 2009
Authorization
VOC - Consultancy
Clearing & Settlement
Switching
ChockStone
September 30, 2009 Loyalty Programs
AT&T Consulting Solutions,
Inc.
Payment Gateway
Cintas Document
June 30, 2009
Other
SecureState Consulting
Management Shredding
Cintas Document
June 30, 2009
Other
SecureState Consulting
Management Storage
Clearent
April 30, 2009
Authorization
Trustwave
Clearing & Settlement
ClearTran
January 31, 2009
Merchant Payment
SecurityMetrics
Processing
Client Services
January 31, 2009
Account Billing Services
Calence
CMP, S.A. (Visanet
May 30, 2009
Authorization
Xtrategies
Dominicana)
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Columbus Data
January 31, 2009
Authorization
Information Exchange
Clearing & Settlement
Issuing Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Commerce V3
November 30, 2009
Hosting Provider
Fortrex Technologies
Payment Gateway
Complianthost.com, a GSI
May 31, 2009
Hosting Provider
SAS 70 Solutions
Service Offering
Computer Services, Inc.
September 30, 2009 Authorization
Crowe Horwath
Clearing & Settlement
Issuing Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
9 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Connexions Loyalty Travel
June 30, 2009
Loyalty Programs
Trustwave
Solutions
MOTO Payment Processing
Connextions, Inc.
December 31, 2008
Customer Relationship
Verizon Business
Management
Consorcio de Tarjetas
December 31, 2008
E-Commerce
Xtrategies
Dominicanas S.A. (CardNet)
Merchant Payment
Processing
Consumer Benefit Services
March 31, 2009
Loyalty Programs
Trustwave
Convergys CCMS
April 30, 2009
Authorization
Fortrex Technologies
Convergys Encore
March 31, 2009
Payment Gateway
Fortrex Technologies
Convergys Speechport
April 30, 2009
Other
Fortrex Technologies
Convio, Inc.
January 31, 2009
Customer Relationship
Trustwave
Management
CO-OP Financial Services
April 30, 2009
Other
Tevora Business Solutions
Inc
CRE Secure
July 31, 2009
Payment Gateway
Coalfire
Credibanco Visa Colombia
April 30, 2009
Authorization
Xtrategies
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Credit Discovery
December 31, 2008
Clearing & Settlement
Information Exchange
Other
Credit Union Card Center
November 30, 2008
Credit Card Services
Self-Assessment
(ICUL Services Corporation)
CreditCall Communications January 31, 2009
Internet Payment Processing Trustwave
Ltd.
Crescent Processing
October 31, 2009
Other
SecurityMetrics
Company
CROEM
October 31, 2009
MOTO Payment Processing
Trustwave
CSG Content Direct
March 31, 2009
Account Billing Services
Solutionary
CSG Systems, - Data Prose May 31, 2009
Authorization
Solutionary
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
10 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
CSG Systems, Inc. -
April 30, 2009
Other
Solutionary
Interactive Messaging
CSG Systems, Inc. –
April 30, 2009
Other
Solutionary
Statement and Account
Billing Services
CSI Software
October 31, 2009
Hosting Provider
Trustwave
Payment Gateway
Cvent
August 31, 2009
Switching
FishNet Security
Cyber City Teleservices
September 30, 2009 Other
CrimsonSecurity
Cybera
April 30, 2009
Other
FishNet Security
CyberSource Corporation
August 31, 2009
Payment Gateway
Payment Software company
(PSC)
Cynergy Data
August 31, 2009
MOTO Payment Processing
SecureWorks
Payment Gateway
Process Magnetic-Stripe
Transactions
Data Delivery Services
July 31, 2009
Other
Coalfire
Data Paradigm
July 31, 2009
Hosting Provider
Specialized Security Services
Data Stream
February 28, 2009
Authorization
Information Exchange
Clearing & Settlement
Other
Payment Gateway
DataCo
May 31, 2009
Other
Valcom
Dataline Systems
December 31, 2009
Other
Trustwave
Datapak Services
May 30, 2009
Authorization
Trustwave
Corporation
Hosting Provider
Payment Gateway
DataPipe
September 30, 2009 Hosting Provider
Trustwave
Debit Technologies, Inc
May 31, 2009
Clearing & Settlement
Information Exchange
Other
Delphis Software
November 30, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
Demandware
June 30, 2009
Hosting Provider
SecurityMetrics
IPSP (E-commerce)
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
11 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Denarii Systems
January 31, 2010
Authorization
Security Works
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
DHD Media
June 30, 2009
Clearing & Settlement
Trustwave
IPSP (E-commerce)
Payment Gateway
Switching
Diamond Marketing
September 30, 2009 Other
Halock Security Labs
Solutions
Digital Check, Inc.
December 31, 2008
Authorization
NTT Data Security
Corporation
Clearing & Settlement
IPSP (E-commerce)
Payment Gateway
Digital Garage, Inc.
December 31, 2008
Authorization
NTT Data Security
Corporation
Clearing & Settlement
IPSP (E-commerce)
Payment Gateway
Digital Network Solutions
April 30, 2009
Authorization
Information Exchange
(DNS) DBA Moneytree ATM
Clearing & Settlement
Payment Gateway
Digital Payment
May 31, 2009
Payment Gateway
Payment Software company
Technologies
(PSC)
Digital River
July 31, 2009
IPSP (E-commerce)
NetSPI
Payment Gateway
Direct Alliance Corp
November 30, 2008
Call Center Services
Trustwave
E-Commerce
Direct Cash Management
December 31, 2009
Authorization
MTS Allstream
Switching
Direct Mail Processors
January 31, 2010
Payment Gateway
Fortrex Technologies
DIRECT PAYMENT
December 31, 2008
IPSP (E-commerce)
Security-assessment.com
SOLUTIONS LTD
MOTO Payment Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
12 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
DIRECT PAYMENT
December 31, 2008
Payment Gateway
Security-assessment.com
SOLUTIONS LTD
Donor.com
June 30, 2009
Authorization
Coalfire
Hosting Provider
IPSP (E-commerce)
MOTO Payment Processing
Other
DST Output, LLC
January 31, 2009
Authorization
FishNet Security
Payment Gateway
Duncan Technologies
June 30, 2009
Payment Gateway
SecurityMetrics
Ebocom, LLC
April 30, 2009
Payment Processing
CyberTrust
ECENTRIC SWITCH (PTY) January 31, 2009
Switching
Trustwave
LTD
EchoSat Communications
September 30, 2009 Other
Security Innovation
eCommLink
November 30, 2008
Debit Card Processing
RSM McGladrey
Stored Value Card
Processing
Elan Financial Services
April 30, 2009
Payment Processing
TrustWave
Elan Financial Services
December 31, 2009
Issuing Processing
Trustwave
Credit Card Issuing
Elavon (formerly NOVA)
May 31, 2009
MerchantConnect/DMR
TrustWave
Payment Processing
viKLIX
Virtual Merchant
Elavon (formerly Southern
September 30, 2009 Authorization
Trustwave
Datacomm)
IPSP (E-commerce)
Process Magnetic-Stripe
Transactions
Switching
Elavon Canada (formerly
July 31, 2009
Payment Gateway
Trustwave
Internet Secure)
ELECTRA CARD
December 31, 2008
Authorization
ControlCase
SERVICES PVT. LTD.
Clearing & Settlement
Issuing Processing
Loyalty Programs
Process Magnetic-Stripe
Transactions
Electronic Merchant Systems April 30, 2009
Other
Trustwave
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
13 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Electronic Payment
April 30, 2009
Authorization
Payment Software Company
Exchange (EPX)
(PSC)
Clearing & Settlement
Hosting Provider
MOTO Payment Processing
Payment Gateway
Switching
Electronic Payments Inc
July 31, 2009
Clearing & Settlement
Information Exchange
Electronic Processing
January 31, 2009
Merchant Payment
Information Exchange
Services
Processing
Electronic Transaction
September 30, 2009 Other
Fortrex Technologies
Systems Corporation (ETS
Corp.)
Element Payment Services
November 30, 2009
Clearing & Settlement
Information Exchange
Other
Payment Gateway
Emergis
June 30, 2009
Internet Payment Gateway
Trustwave
EMN8 POS Managed
November 30, 2009
Other
Tevora Business Solutions
Services
Payment Gateway
EMS Holland, a First Data
December 31, 2008
Payment Processing
Trustwave
Company
Encircle
December 31, 2009
Other
Enterprise Risk mangement
ENETS PTE LTD
November 30, 2008
Payment Gateway
Vectra
ePayData
October 31, 2009
Clearing & Settlement
Information Exchange
Payment Gateway
Epicor
March 31, 2009
Hosting Provider
Trustwave
Epoch
November 30, 2009
IPSP (E-commerce)
Protiviti
eProcessing Network
April 30, 2009
Payment Gateway
Trustwave
Epsilon Data Management
August 31, 2009
Loyalty Programs
Verizon Business
EVERTEC Latinoamerica /
October 31, 2009
Authorization
Xtrategies
ATH Costa Rica
Clearing & Settlement
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
14 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
EVERTEC, Inc.
March 31, 2009
Authorization
Xtrategies
Clearing & Settlement
Hosting Provider
IPSP (E-commerce)
Issuing Processing
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
EVO Merchant Services
October 31, 2009
Clearing & Settlement
Trustwave
Evolution Benefits
December 31, 2008
Account Billing Services
Self-Assessment
E-xact Transactions
May 31, 2009
Authorization
Telus Communications Inc.
Hosting Provider
MOTO Payment Processing
Payment Gateway
Excellence in Motivation
November 30, 2009
Authorization
Information Exchange
Clearing & Settlement
Issuing Processing
Payment Gateway
Experian Information
September 30, 2009 IPSP (E-commerce)
Verizon Business
Solutions
Other
ExtraMeasures
May 31, 2009
Other
Coalfire
EZFacility.com
August 31, 2009
Payment Gateway
Trustwave
Ezic, Inc.
July 31, 2009
Authorization
Information Exchange
Clearing & Settlement
MOTO Payment Processing
Other
Payment Gateway
Process Magnetic-Stripe
Transactions
Fair Isaac - Card Alert
September 30, 2009 Other
Trustwave
Fast Transact Inc
May 31, 2009
Authorization
Contronl Case
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Fédération des caisses
August 31, 2009
Authorization
Trustwave
Desjardins du Québec
Issuing Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
15 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Fédération des caisses
August 31, 2009
Process Magnetic-Stripe
Trustwave
Desjardins du Québec
Transactions
Fidelity Information
November 30, 2009
Authorization
IBM – Internet Security
Services - Australasia
Systems (ISS
Clearing & Settlement
Payment Gateway
Switching
Fidelity Information
June 30, 2009
Loyalty Programs
IBM Internet Security
Services - Card Loyalty
Systems
Program
Fidelity Information
November 30, 2009
Authorization
IBM – Internet Security
Services - Card Services UK
Systems (ISS)
(Certegy)
Clearing & Settlement
Payment Gateway
Switching
Fidelity Information
September 30, 2009 Authorization
IBM Internet Security
Services - Certegy UK,
Systems
Birmingham
Clearing & Settlement
Payment Gateway
Switching
Fidelity Information
December 31, 2009
Authorization
IBM Internet Security
Services - Chicago Authnet
Systems
Clearing & Settlement
Issuing Processing
Payment Gateway
Switching
Fidelity Information
January 31, 2009
ATM Processing
IBM Internet Security
Services - ECPSNS
Systems
Fidelity Information
April 30, 2009
Payment Processing
IBM Internet Security
Services - eFunds Prepaid
Systems
Solutions
Fidelity Information
September 30, 2009 Other
IBM Internet Security
Services - GBS India
Systems
Fidelity Information
January 31, 2010
Other
IBM Internet Security
Services - Lisle Remittance
Systems
Processing
Fidelity Information
May 31, 2009
Debit Card Processing
IBM Internet Security
Services - Little Rock
Systems
Payment Processing
Fidelity Information
April 30, 2009
Payment Processing
IBM Internet Security
Services - Norcross GA
Systems
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
16 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Fidelity Information
February 28, 2009
Report Processing
IBM Internet Security
Services - Output Solutions
Systems
San Antonio
Fidelity Information
September 30, 2009 Other
IBM Internet Security
Services - Plainview
Systems
Fidelity Information
April 30, 2009
Credit Card Payment
IBM Internet Security
Services - Processadora e
Processing
Systems
Servicos S.A. Brazil
Fidelity Information
September 30, 2009 Remittance Processing
IBM Internet Security
Services - St. Petersburg
Systems
Fidelity Information
January 31, 2010
Other
IBM Internet Security
Services - Web Vault
Systems (ISS)
Fidelity Information Services September 30, 2009 Authorization
IBM Internet Security
(FIS) Electronic Payments,
Systems
New Berlin WI
Clearing & Settlement
Payment Gateway
Switching
Fifth Third Processing
June 30, 2009
Payment Processing
Trustwave
Solutions - Issuing and
Switch-Providing Systems
Fifth Third Processing
June 30, 2009
Payment Processing
Trustwave
Solutions-Acquiring Systems
Financial Transmission
May 31, 2010
Payment Gateway
Trustwave
Network Inc
Firethorn
February 28, 2009
Hosting Provider
Accuvant
First American Payment
June 30, 2009
Authorization
IBM Internet Security
Systems
Systems
Payment Gateway
First Atlantic Commerce,
March 31, 2009
Clearing & Settlement
Xtrategies
LTD.
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Switching
First Currency Choice Pte
December 31, 2008
Other
Vectra Corporation
Ltd
First Data - Card Services
September 30, 2009 IPSP (E-commerce)
Trustwave
International
First Data - Concord
September 30, 2009 Clearing & Settlement
Trustwave
Electronic Financial Systems
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
17 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
First Data - Concord
September 30, 2009 Authorization
Trustwave
Financial Technologies
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
First Data - Concord
September 30, 2009 Clearing & Settlement
Trustwave
Payment Services
IPSP (E-commerce)
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
First Data - Global Gateway December 31, 2009
IPSP (E-commerce)
Trustwave
(Linkpoint)
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
First Data - Integrated
February 28, 2010
Other
Trustwave
Payment Systems (IPS)
Denver
First Data - Merchant
December 31, 2009
Authorization
Trustwave
Services
Clearing & Settlement
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
First Data - Money Network
September 30, 2009 Other
Trustwave
First Data - PayPoint
September 30, 2009 Clearing & Settlement
Trustwave
IPSP (E-commerce)
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
First Data - RemitCo
September 30, 2009 Other
Trustwave
First Data - Retail ATM
September 30, 2009 Clearing & Settlement
Trustwave
IPSP (E-commerce)
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
18 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
First Data - Retail ATM
September 30, 2009 MOTO Payment Processing
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
First Data - Secure
December 31, 2009
Authorization
Trustwave
Transport (Datawire)
IPSP (E-commerce)
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
First Data - TeleCheck
September 30, 2009 Authorization
Trustwave
Loyalty Programs
MOTO Payment Processing
Payment Gateway
First Data Government
December 31, 2009
Payment Gateway
Trustwave
Solutions
First Data International -
September 30, 2009 Authorization
Trustwave
ANZSA
Clearing & Settlement
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
First Data International -
September 30, 2009 Authorization
Trustwave
China
Clearing & Settlement
Issuing Processing
Loyalty Programs
Process Magnetic-Stripe
Transactions
Switching
First Data International -
March 31, 2009
Payment Processing
TrustWave
Procesa
First Data International-LAC December 31, 2008
Merchant Payment
Trustwave
(Latin American & Canada)
Processing
First Data International-
December 31, 2008
Payment Processing
Trustwave
OmniPay Limited
First Data Resources
January 31, 2010
Authorization
Trustwave
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
19 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
First Data Resources
January 31, 2010
Loyalty Programs
Trustwave
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
First Data STAR (Networks, September 30, 2009 Authorization
Trustwave
Processing and Systems
Inc.)
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
First Hawaiian Bank
June 30, 2009
Payment Processing
Trustwave
First National Bank of
January 31, 2010
Authorization
Trustwave
Omaha
Clearing & Settlement
Issuing Processing
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
First National Merchant
January 31, 2010
Authorization
Trustwave
Solutions
Clearing & Settlement
Issuing Processing
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
First National Technology
March 31, 2010
Hosting Provider
Trustwave
Solutions
First Source
September 30, 2009 Other
SecurityMetrics
FirstView Financial
June 30, 2009
Authorization
Trustwave
Clearing & Settlement
Payment Gateway
FIS ClearCommerce
May 31, 2009
Authorization
IBM Internet Security
Systems
Clearing & Settlement
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
20 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
FIS ClearCommerce
May 31, 2009
Payment Gateway
IBM Internet Security
Systems
Switching
FISERV Advantage
September 30, 2009 Other
PSC
FISERV Billings (I_Tech
July 31, 2009
Authorization
Crowe Chizek
Corporation)
Clearing & Settlement
Issuing Processing
Switching
FISERV Credit Processing
October 31, 2009
Other
Payment Software Company
Services
(PSC)
Fiserv EFT
March 31, 2009
Payment Processing
Payment Software Company
(PSC)
FISERV Enterprise
September 30, 2009 Other
PSC
Technology - Johns Creek
Fiserv EPSIIA
February 28, 2009
Data Services
Payment Software company
(PSC)
FISERV FET Irving
November 30, 2009
Hosting Provider
Payment Software company
(PSC)
Fiserv Xroads
February 28, 2009
Data Services
Payment Software company
(PSC)
Florists’ Transworld Delivery March 31, 2009
Payment Gateway
HALOCK Security Labs
Inc.
Focus Payment Solutions
January 31, 2010
Trustwave
Forward Information
June 30, 2009
Authorization
Trustwave
Technologies
Hosting Provider
Payment Gateway
Forwardline Payment
April 30, 2009
Trustwave
Services, LLC
Fosdick Fulfillment
July 31, 2009
Clearing & Settlement
Trustwave
FreedomPay Inc.
July 31, 2009
Authorization
T3i
Clearing & Settlement
Loyalty Programs
Payment Gateway
Frontline Processing
June 30, 2009
Other
SecurityMetrics
Payment Gateway
Fry Inc.
May 31, 2009
Hosting Provider
IBM Internet Security
Systems
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
21 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
FSV Payment Systems
May 31, 2009
Clearing & Settlement
K3DES
Issuing Processing
Other
Fujitsu America Inc.
February 28, 2010
Hosting Provider
Verizon Business
Fulfillment Technologies
September 30, 2009 Authorization
SecureState Consulting
Full Perspective Video
December 31, 2008
Call Center Services
TrustWave
Services, Inc.
Direct Marketing
Galileo Processing
July 31, 2009
Authorization
Trustwave
Clearing & Settlement
Issuing Processing
Process Magnetic-Stripe
Transactions
GC Services
October 31, 2009
MOTO Payment Processing
K3DES
Process Magnetic-Stripe
Transactions
GE Money - Americas,
December 31, 2009
Authorization
Symantec
Retail Sales Finance
IPSP (E-commerce)
Payment Gateway
GE Money - Retail
August 31, 2009
Authorization
Symantec
Consumer Finance
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
Other
Payment Gateway
Process Magnetic-Stripe
Transactions
Global Card Services
May 31, 2009
Merchant Payment
CyberTrust
Processing
Global Cash Access
July 31, 2009
Authorization
Digital Resources Group
(DRG)
Clearing & Settlement
Process Magnetic-Stripe
Transactions
Global Cash Card
January 31, 2010
Authorization
Digital Resources Group
(DRG)
Issuing Processing
Global Collect Services
February 28, 2009
Clearing & Settlement
Trustwave
IPSP (E-commerce)
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
22 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Global Collect Services B.V. July 31, 2009
Clearing & Settlement
Trustwave
IPSP (E-commerce)
Global Electronic
January 31, 2009
Payment Gateway
403 Labs
Technology
Global Payments Direct, Inc. July 31, 2009
Payment Gateway
Trustwave
Global Processing Centre
June 30, 2009
Authorization
Information Exchange
Clearing & Settlement
Issuing Processing
Payment Gateway
Global Technology Partners June 30, 2009
Other
Coalfire
LLC
GMO PAYMENT
December 31, 2008
Authorization
ICMS
GATEWAY, INC
Clearing & Settlement
IPSP (E-commerce)
Payment Gateway
Go Daddy
October 31, 2009
IPSP (E-commerce)
Trustwave
GoEmerchant
May 31, 2009
Authorization
IBM Internet Security
Systems
Payment Gateway
Google
January 31, 2010
Payment Gateway
Core Security
Govolution Velocity
May 31, 2009
Authorization
IBM Internet Security
Payment System
Systems
Payment Gateway
GP Network Corporation
September 30, 2009 Authorization
BSI Japan
Clearing & Settlement
Gravity Payments
May 31, 2009
Clearing & Settlement
Information Exchange
Other
Green Dot
October 31, 2009
Authorization
403 Labs
Issuing Processing
GSI Commerce Solutions
September 30, 2009 IPSP (E-commerce)
Trustwave
GSI Commerce South Inc.
December 31, 2008
Direct Marketing
RSM McGladrey
Order Fulfillment
Hamer Enterprises
December 31, 2009
Payment Gateway
SecurityMetrics
Hanover Direct
September 30, 2009 Payment Gateway
Fortrex Technologies
Harbor Payments
July 31, 2009
Payment Gateway
Verizon Business
Harland Clarke
November 30, 2008
Direct Marketing
Verizon
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
23 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Harland Clarke
November 30, 2008
Order Fulfillment
Verizon
Harris Connect
December 31, 2009
Payment Gateway
Trustwave
Harte-Hanks
June 30, 2009
Hosting Provider
CyberEnsure LLC
HBNet / Hypercom
August 31, 2009
Other
igxglobal, Inc.
Heartland Payment Systems April 30, 2009
Payment Processing
Verisign
Helcim Inc.
June 30, 2009
Authorization
SPIguard Security Solutions
Inc.
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Hewlett-Packard (TD Bank
June 30, 2009
Hosting Provider
Deloite & Touche LLP
Environment)
Hinda, Inc.
January 31, 2009
Loyalty Programs
Self-Assessment
HostMySite.com
April 30, 2009
Hosting Provider
Trustwave
Other
HP Commercial Card (EDS) May 31, 2009
Payment Processing
Trustwave
HP Consumer Card
October 31, 2009
Authorization
Trustwave
Services (EDS)
Issuing Processing
Loyalty Programs
HP Consumer Direct (EDS)
August 31, 2009
Order Fulfillment
Trustwave
HP Deposit Systems
October 31, 2009
Clearing & Settlement
Trustwave
Hosting Provider
Payment Gateway
HP Guidance Authorization
October 31, 2009
Issuing Processing
Trustwave
HP Merchant Acquirer
October 31, 2009
Clearing & Settlement
Trustwave
Services
HP Oregon eGovernment
June 30, 2009
Managed Merchant Hosting
Trustwave
(EDS)
HP Pay for Convenience
April 30, 2009
Internet Payment Processing Trustwave
(EDS)
HP Surveyor (EDS)
June 30, 2009
Report Processing
Trustwave
Hughes Network Systems
September 30, 2009 Switching
IBM Internet Security
Systems
Humboldt Merchant Services October 31, 2008
Merchant Payment
SecurityMetrics
Processing
i2c Incorporated
September 30, 2009 Authorization
Trustwave
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
24 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
i2c Incorporated
September 30, 2009 IPSP (E-commerce)
Trustwave
Issuing Processing
Process Magnetic-Stripe
Transactions
IATS Ticketmaster Canada
December 31, 2009
Other
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
IC Systems
August 31, 2009
Clearing & Settlement
RSM McGladrey
ICT Group
October 31, 2009
Other
TruArx
ID Analytics, Inc.
June 30, 2009
Other
Computer Task Group
Image Remit
May 31, 2009
Payment Gateway
IGX Global
iMax Bancard
December 31, 2009
Other
SecurityMetrics
Incentium LLC
May 30, 2009
Loyalty Programs
SecureWorks
Payment Gateway
InComm
December 31, 2009
Authorization
IBM Internet Security
Systems
Issuing Processing
Other
Industry Retail Group
December 31, 2009
Other
Trustwave
INetU, Inc.
January 31, 2009
Managed Hosting Provider
Trustwave
Infinity Data
October 31, 2009
Clearing & Settlement
Information Exchange
Other
Infonox
December 31, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
Ingenico Canada Ltd.
November 30, 2008
Payment Gateway
telus
Innovative Gateway
October 31, 2009
Payment Gateway
Trustwave
Solutions (IGS)
Innovative Merchant
October 31, 2009
Authorization
Trustwave
Solutions (IMS)
Clearing & Settlement
IPSP (E-commerce)
Process Magnetic-Stripe
Transactions
Innovis Data Solutions, Inc
January 30, 2009
Verizon Business
IN-SOLUTIONS GLOBAL
April 30, 2009
Clearing & Settlement
SISA Information Security
PVT LIMITED
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
25 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
IN-SOLUTIONS GLOBAL
April 30, 2009
Hosting Provider
SISA Information Security
PVT LIMITED
InstaMed Communications
February 28, 2009
Payment Processing
Trustwave
Integrated Printing Solutions October 31, 2009
Other
Raven Eye
Intellipay
February 28, 2009
Clearing & Settlement
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Intercept
September 30, 2009 Payment Gateway
Coalfire
Interface Security Secure -
June 30, 2009
Other
SecurityMetrics
Managed Broadband
Internet Payment Exchange July 31, 2009
Authorization
TruArx
Process Magnetic-Stripe
Transactions
Internet Ticketing Systems, July 31, 2009
IPSP (E-commerce)
SecurityMetrics
Inc
MOTO Payment Processing
Payment Gateway
Interplx Technologies
December 31, 2008
Other
Self-Assessment
Interpro Group, Inc.
October 31, 2009
Other
K3DES
Payment Gateway
Intersections
February 28, 2010
Authorization
Control Case
IntraISP Software Solutions, May 31, 2009
Payment Gateway
Trustwave
LLC
Intuit Electronic Clearing
September 30, 2009 Authorization
Trustwave
House (ECHO, Inc.)
Clearing & Settlement
IPSP (E-commerce)
Payment Gateway
Process Magnetic-Stripe
Transactions
Intuition Systems
October 31, 2009
Payment Gateway
SecurityMetrics
IP Commerce
October 31, 2009
Other
Coalfire
Payment Gateway
iPayment
June 30, 2009
Other
Trustwave
IPS Group Inc.
October 31, 2009
Payment Gateway
Tevora Business Solutions
iQor
August 31, 2009
Other
CrimsonSecurity
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
26 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
IRN Payment Systems
February 28, 2010
Clearing & Settlement
Information Exchange
Other
Iron Mountain
May 31, 2009
Other
Neohapsis Inc.
iTransact
May 31, 2009
MOTO Payment Processing
Specialized Security
Services, Inc.
Payment Gateway
Process Magnetic-Stripe
Transactions
ITS Bank - Shazam Network April 30, 2009
Payment Processing
Trustwave
Iveri Payment Technology
March 31, 2009
IPSP (E-commerce)
Trustwave
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
J.J. MacKay Canada
November 30, 2009
Payment Gateway
Trustwave
Limited/MacKay Meters, Inc.
(MacKay Meters)
James Tower Hosting
February 28, 2009
Hosting Provider
RSM McGladrey
IPSP (E-commerce)
JetPay, LLC
April 30, 2009
Payment Processing
Trustwave
Jettis
July 31, 2009
Authorization
TrustWave
IPSP (E-commerce)
Payment Gateway
JPMorgan Xign (Order-to-
July 31, 2009
IPSP (E-commerce)
Trustwave
Pay)
Payment Gateway
JSA Technologies
September 30, 2009 Clearing & Settlement
Trustwave
JSC Chronopay
June 30, 2009
IPSP (E-commerce)
SRC Security Research &
Consulting GmbH (SRC)
Kable News Company, Inc.
July 31, 2009
Trustwave
Kincaid Technologies
December 31, 2008
Merchant Payment
Information Exchange
Processing
Kount, Inc (A Division of
March 31, 2009
Other
Trustwave
Keynetics, Inc)
Kubra Data Transfer, Inc.
July 31, 2009
Other
Trustwave
Kudzu Interactive, Inc.
September 30, 2009 Authorization
ControlCase
Payment Gateway
Lethoff, Inc.
November 30, 2009
Authorization
Trustwave
Clearing & Settlement
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
27 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Lethoff, Inc.
November 30, 2009
IPSP (E-commerce)
Trustwave
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Link2Gov
February 28, 2009
Federal, State, and County
Trustwave
Tax Payments
Litle & Co
January 31, 2010
Payment Gateway
Payment Software Company
(PSC)
LiveOps, Inc
July 31, 2009
IPSP (E-commerce)
Trustwave
LOTSolutions / Life of the
June 30, 2009
Other
Trustwave
South
Lundquist Consulting
December 31, 2009
Other
Trustwave
M2 FINANCIAL
January 31, 2010
Clearing & Settlement
Information Exchange
Payment Gateway
Maas Global Solutions
October 31, 2009
Authorization
Digital Resources Group
Corporation
(DRG)
Payment Gateway
Process Magnetic-Stripe
Transactions
Magic Wrighter
July 31, 2009
Payment Gateway
Trustwave
Maintech
November 30, 2009
Switching
IBM Internet Security
Systems
Maritz Loyalty Marketing
December 31, 2010
Loyalty Programs
IBM Internet Security
Systems
MarketLive
October 31, 2009
Hosting Provider
AT&T Consulting Solutions
IPSP (E-commerce)
Marketworks
April 30, 2009
Payment Gateway
Trustwave
MBS Insight, Inc
May 31, 2009
Other
K3DES
MBS Textbook Exchange,
September 30, 2009 Authorization
Trustwave
Inc. - inSite
Payment Gateway
MBU
August 31, 2009
3-D Secure Access Control
Trustwave
Server
Authorization
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
28 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
MBU
August 31, 2009
Process Magnetic-Stripe
Trustwave
Transactions
McKesson Patient Compass April 30, 2009
Trustwave
Mediterranean Smart Cards December 31, 2009
3-D Secure Access Control
Trustwave
Company
Server
Authorization
Clearing & Settlement
Issuing Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
MegaPath
January 31, 2009
Payment Transmission
Trustwave
Services
Mellon Transaction Solutions October 31, 2009
Authorization
Trustwave
Clearing & Settlement
Issuing Processing
Process Magnetic-Stripe
Transactions
Switching
Member Solutions, Inc.
September 30, 2009 IPSP (E-commerce)
Trustwave
Process Magnetic-Stripe
Transactions
Merchant e-Solutions
January 31, 2009
Merchant Payment
Digital Resources Group
Processing
(DRG)
Merchant Link, LLC
January 31, 2009
Merchant Payment
Trustwave
Processing
Merchant Partners
July 31, 2009
Authorization
Information Exchange
Clearing & Settlement
Payment Gateway
Merchant Plus
July 31, 2009
Payment Gateway
Trustwave
Merchant Service Center
November 30, 2009
Clearing & Settlement
Information Exchange
Other
Payment Gateway
MERCHANT SERVICES DE December 31, 2009
Other
Trustwave
MEXICO S.A DE C.V
Merchants Billing Services
November 30, 2009
Authorization
Information Exchange
Clearing & Settlement
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
29 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Merchants Billing Services
November 30, 2009
Process Magnetic-Stripe
Information Exchange
Transactions
Merchants’ Choice Payment September 30, 2009 Other
K3DES
Solutions
Mercury Payment Systems
March 31, 2010
Payment Gateway
Coalfire
Meridian Enterprises, Inc.
December 31, 2009
Authorization
Protiviti Inc.
Issuing Processing
Meritus Payment Solutions
August 31, 2009
Payment Gateway
403 Labs
Merlin Solutions, LLC
April 30, 2009
Chargebacks
Trustwave
Dispute Resolution
Meta Payment Systems
April 30, 2009
Issuer
Trustwave
Metavante Biller Service
September 30, 2009 Payment Gateway
Trustwave
Provider (BSP)
Metavante Corporation-
April 30, 2009
ATM Processing
Trustwave
Acquiring Solutions, ATM
Driving & Gateway Services
Payment Gateway
Metavante Corporation-
April 30, 2009
Debit Card Processing
Trustwave
Issuing Solutions, Debit
Account, Healthcare
Payment Card, and Prepaid
Card Solutions
Metavante Healthcare
February 28, 2009
Payment Processing
TrustWave
Payment Solutions Group,
Benefits Payment Systems
Metavante-Merchant
April 30, 2009
Credit Card Payment
Trustwave
Acquiring and Credit Card
Processing
Account Processing
Services
Merchant Payment
Processing
MHM Resources
January 31, 2009
Employee Benefits Programs Self-Assessment
Micros Systems, Inc.
January 31, 2009
Managed Hosting
Trustwave
Microsoft Dynamics Online
May 31, 2009
IPSP (E-commerce)
Trustwave
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Minacs Worldwide Inc.
April 30, 2009
MOTO Payment Processing
Trustwave
Other
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
30 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Mindbody
September 30, 2009 Hosting Provider
Payment Software company
(PSC)
Payment Gateway
MOLDMEDIACARD SRL
December 31, 2008
Trustwave
Moneris
July 31, 2009
3-D Secure Access Control
Dyntek
Server
Authorization
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
MoneyGram Payment
May 31, 2009
IPSP (E-commerce)
Verizon Business:
Systems
Issuing Processing
Other
Monitise Americas
September 30, 2009 Other
Trustwave
Motivational Fulfillment &
February 28, 2009
Order Fulfillment
Tevora Business Solutions
Logistics Services
mPay Gateway
September 30, 2009 Payment Gateway
SecurityMetrics
MPOWER Labs
November 30, 2009
Authorization
403 Labs
Msi - Merchant Services,
March 31, 2010
Clearing & Settlement
Information Exchange
Inc. NJ
Mtrex (Vision Bankcard, Inc.) February 28, 2009
Merchant Payment Services Trustwave
Payment Processing
MTXEPS
October 31, 2009
Authorization
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Multi Service Corp
February 28, 2009
Authorization
Trustwave
Clearing & Settlement
Payment Gateway
Process Magnetic-Stripe
Transactions
MWRC Internet Sales
January 31, 2009
Hosting Provider
Self-Assessment
MySchoolBucks, LLC
July 31, 2009
IPSP (E-commerce)
Tevora Business Solutions
National Bankcard Services
October 31, 2009
Authorization
RSM McGladrey
Clearing & Settlement
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
31 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
National Bankcard Services
October 31, 2009
Loyalty Programs
RSM McGladrey
Payment Gateway
National Card Services
September 30, 2008 Authorization
K3DES
Clearing & Settlement
Issuing Processing
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
National Fulfillment Services October 31, 2009
Authorization
SecurityMetrics
(NFS)
Clearing & Settlement
Hosting Provider
MOTO Payment Processing
Payment Gateway
National Information
May 31, 2009
Payment Gateway
Trustwave
Solutions Cooperative
National Merchant Center
December 31, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
National Processing
September 30, 2009 Other
Trustwave
Company
National Records
August 31, 2009
Other
403 Labs
Management
National Systems
July 31, 2009
Hosting Provider
Trustwave
Corporation / QuikOrder, Inc.
Nationwide Payment
November 30, 2009
Authorization
Information Exchange
Solutions
Clearing & Settlement
Payment Gateway
Navitaire
December 31, 2008
IPSP (E-commerce)
Trustwave
Payment Gateway
NCMIC Finance Corporation October 31, 2009
Clearing & Settlement
SecurityMetrics
Loyalty Programs
NCO Group
November 30, 2009
Other
Verizon Business – Security
NCR Canada Ltd.
January 31, 2009
Loyalty Programs
Verizon Business
Nebraska Electronic
November 30, 2009
Authorization
Trustwave
Transfer System, Inc.
Clearing & Settlement
Switching
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
32 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Nelnet Business Solutions,
April 30, 2009
Authorization
Trustwave
Inc
Payment Gateway
NETBilling
November 30, 2009
Payment Gateway
SecurityMetrics
NetSpend
December 31, 2009
Authorization
AT&T Consulting Solutions
Clearing & Settlement
Issuing Processing
Payment Gateway
NetSuite
January 31, 2010
Hosting Provider
Trustwave
Payment Gateway
Network Merchants
March 31, 2009
Authorization
Trustwave
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Network Solutions
November 30, 2009
Other
Payment Software Company
(PSC)
Payment Gateway
New Edge Networks
July 31, 2009
Other
Trustwave
Newegg, Inc.
November 30, 2009
Payment Gateway
Trustwave
Newtek Merchant Services
October 31, 2009
Clearing & Settlement
SecurityMetrics
Loyalty Programs
NEXUS, S.A.
February 28, 2009
Issuing Processing
403labs
North American Bancard
October 31, 2009
Clearing & Settlement
Information Exchange
NovoPayment, Inc.
June 30, 2009
Issuing Processing
Xtrategies
MOTO Payment Processing
Other
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Nuance Communications,
July 31, 2009
Other
Trustwave
Inc.
NYCE Payments Network,
April 30, 2009
Payment Processing
Trustwave
LLC
Oak Leaf Systems, Inc. dba February 28, 2009
Hosting Provider
Raven Eye
Data Hosting Solutions
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
33 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Obopay
May 31, 2009
Authorization
IBM Internet Security
Systems
Clearing & Settlement
Payment Gateway
Official Payments
February 28, 2010
Clearing & Settlement
Trustwave
Corporation
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Switching
Ogone
February 28, 2009
VOC-Consultancy BV
OMS Online, LLC
June 30, 2009
Hosting Provider
SecurityMetrics
IPSP (E-commerce)
MOTO Payment Processing
Other
Payment Gateway
OneBridge, Inc.
October 31, 2009
Issuing Processing
Crowe Horwath LLP
Switching
Open Solutions TotalPlus
April 30, 2009
K3DES
(Bisys)
OpSource
February 28, 2009
Hosting Provider
Trustwave
Payment Gateway
Optimal Payments
June 30, 2009
Clearing & Settlement
Trustwave
Payment Gateway
Oracle EasyPay
April 30, 2009
IPSP (E-commerce)
Coalfire
Oracle On Demand
August 31, 2009
Hosting Provider
Coalfire
IPSP (E-commerce)
ORCC - eCommerce
October 31, 2009
Other
Trustwave
Division: Parsippany
ORCC - eCommerce
May 31, 2009
Payment Gateway
Trustwave
Division: Princeton
OrderMotion
May 31, 2009
IPSP (E-commerce)
Trustwave
OrderTalk
September 30, 2009 IPSP (E-commerce)
Trustwave
MOTO Payment Processing
Payment Gateway
Osiris Innovations Group
June 30, 2009
MOTO Payment Processing
K3DES
OverDrive Inc
December 31, 2009
Clearing & Settlement
NetWorks Group
IPSP (E-commerce)
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
34 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Paciolan, Inc.
October 31, 2009
Hosting Provider
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
Palm Coast Data
January 31, 2009
Order Fulfillment
K3DES
PAMS Lunchroom LLC
August 31, 2009
IPSP (E-commerce)
Trustwave
Parkeon
December 31, 2009
Payment Gateway
Trustwave
Parkmobile US
December 31, 2009
Other
Coalfire
PassPort EFT Solutions
December 31, 2009
Authorization
Trustwave
Switching
Passport Health
February 28, 2009
Payment Gateway
Trustwave
Communications, Inc.
Pay DQ
November 30, 2009
Payment Gateway
Solutionary
PAY.ON
December 31, 2009
IPSP (E-commerce)
Acertigo AG
Payment Gateway
Paycom.net
November 30, 2009
IPSP (E-commerce)
Protiviti
PayConnexion
April 30, 2009
Payment Gateway
Jefferson Wells
PAYGATE INC.
November 30, 2008
Authorization
Control Case
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Payment Gateway
PAYjr
October 31, 2009
Clearing & Settlement
Information Exchange
Issuing Processing
Other
PayJunction
April 30, 2009
Payment Gateway
Payment Software Company
(PSC)
PayLeap LLC
February 28, 2010
Clearing & Settlement
Information Exchange
Payment Gateway
Payment Data Systems
May 31, 2009
Authorization
Information Exchange Inc.
Clearing & Settlement
Issuing Processing
Payment Gateway
Payment Processing, Inc.
April 30, 2009
Merchant Payment
Trustwave
Processing
Payment Service Network
December 31, 2010
Payment Gateway
Digital Resources Group
(DRG)
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
35 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Paymentus Corporation
October 31, 2009
Other
SPIguard
Payment Gateway
Paymetric
August 31, 2009
Authorization
Trustwave
Clearing & Settlement
Other
Payment Gateway
PayPal
December 31, 2009
IPSP (E-commerce)
IBM Internet Security
Systems
MOTO Payment Processing
Payment Gateway
PaySentinel
September 30, 2009 Clearing & Settlement
Trustwave
IPSP (E-commerce)
Payment Gateway
Switching
PaySimple
September 30, 2009 Payment Gateway
Coalfire
PayTrace
August 31, 2009
Authorization
Information Exchange
Clearing & Settlement
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Payvision
June 30, 2009
BT INS
PBD Worldwide Fulfillment
July 31, 2009
Other
Trustwave
Services
PE Systems
August 31, 2009
Authorization
Trustwave
Payment Gateway
Switching
PEMCO
June 30, 2009
Payment Processing
Coalfire
PeopleSupport-Costa Rica
May 31, 2009
Other
Verisign
PFSweb, Inc.
April 30, 2009
Hosting Provider
Trustwave
IPSP (E-commerce)
MOTO Payment Processing
PhoenixNap, LLC
January 31, 2010
Coalfire
Pipeline Data
November 30, 2009
MOTO Payment Processing
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
36 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Pivotal Payments
February 28, 2009
Clearing & Settlement
SecurityMetrics
Planet eShop
October 31, 2008
Payment Processing
Information Exchange
Planet Payment
March 31, 2009
Multi-Currency Payment
Trustwave
Processing
Plug & Pay Technologies,
June 30, 2009
Clearing & Settlement
SecurityMetrics
Inc.
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Portmone
December 16, 2009
SRC Germany
POS Portal
August 31, 2009
Other
Coalfire
Posatel Inc.
March 31, 2010
Authorization
SPIguard Security Solutions
Inc.
Clearing & Settlement
Issuing Processing
Process Magnetic-Stripe
Transactions
Switching
POSnet, LLC
May 31, 2009
Payment Gateway
403 Labs
POST Integrations, Inc.
April 30, 2009
Payment Processing
CyberTrust
(Ebocom)
PowerPay, LLC
October 31, 2009
Other
Payment Software company
(PSC)
Preferred Health
August 31, 2009
Payment Gateway
Trustwave
Presto - Publix Super
October 31, 2009
Other
Solutionary
Markets
Switching
Primoris Services LLC
July 31, 2009
Clearing & Settlement
SecurityMetrics
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Priority Payment Systems
April 30, 2009
Other
SecurityMetrics
Process America
September 30, 2009 Clearing & Settlement
Information Exchange
Payment Gateway
ProfitStars
September 30, 2009 Payment Gateway
Trustwave
Promoción y Operación S.A. March 31, 2009
Clearing & Settlement
Xtrategies
de C.V. (PROSA)
E-Commerce
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
37 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Promoción y Operación S.A. March 31, 2009
Merchant Payment
Xtrategies
de C.V. (PROSA)
Processing
Payment Gateway
ProPay USA, Inc.
June 30, 2009
Authorization
SecurityMetrics
Issuing Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Propco Marketing
April 30, 2009
Loyalty Programs
Neohapsis, Inc.
Property Bridge, LLC, a
March 31, 2009
Merchant Payment
SecurityMetrics
Moneygram International
Processing
Company
Property Solutions
June 30, 2009
Authorization
SecurityMetrics
International, Inc
Clearing & Settlement
Hosting Provider
Payment Gateway
Protocol Integrated Direct
September 30, 2009 Other
Verizon Business Security
Marketing
Solutions
PSCU Financial Services,
February 28, 2009
Clearing & Settlement
Verizon Business
Inc.
Loyalty Programs
Payment Gateway
Switching
PSI Gate
April 30, 2009
Authorization
Trustwave
IPSP (E-commerce)
Payment Gateway
Pulse Network LLC
July 31, 2009
Authorization
K3DES
Clearing & Settlement
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
Qgiv
May 31, 2009
Payment Gateway
SecurityMetrics
QS/1
June 30, 2009
Payment Gateway
Trustwave
Quantum Services
September 30, 2009 MOTO Payment Processing
Raven Eye
Payment Gateway
Quickbooks Merchant
October 31, 2009
IPSP (E-commerce)
Trustwave
Services
Process Magnetic-Stripe
Transactions
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
38 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Rackspace Managed
July 31, 2009
Hosting Provider
Trustwave
Hosting
Radiant Systems - ALOHA
October 31, 2009
Payment Gateway
Coalfire
TAKEOUT
RADIANT SYSTEMS -
October 31, 2009
Payment Gateway
Coalfire
CPGATEWAY
RADIANT SYSTEMS - PCI
October 31, 2009
Hosting Provider
Coalfire
DATA CENTERS
Rainbow Rewards
February 28, 2010
Loyalty Programs
Coalfire
RBS WorldPay Inc. -
May 31, 2009
Merchant Payment Services
Verizon Business
Acquiring
Ready Financial Group
July 31, 2009
Other
Trustwave
RealPage, Inc.
June 30, 2009
Payment Gateway
Trustwave
Reardon Commerce
April 30, 2009
IPSP (E-commerce)
IBM Internet Security
Systems
Other
Receivable Management
September 30, 2009 Other
Trustwave
Services
Redbanc, S.A.
June 30, 2009
Clearing & Settlement
Xtrategies, LLC
Process Magnetic-Stripe
Transactions
Switching
Regions Bank
February 28, 2009
Authorization and Settlement Jefferson Wells
RegOnline
April 30, 2009
Authorization
Coalfire
Clearing & Settlement
Payment Gateway
Resurgent Capital Services
August 31, 2009
Other
Protiviti
Retail Decisions
January 31, 2009
Internet Payment Processing Trustwave
Revelex Corporation
September 30, 2009 Other
Trustwave
RevTrak, Inc
May 31, 2009
Authorization
FishNet Security
Payment Gateway
Rewards Network
July 31, 2009
Loyalty Programs
Sunera
RocketGate
October 31, 2009
Authorization
403 Labs
Clearing & Settlement
Payment Gateway
RT Lawrence
April 30, 2009
Payment Gateway
Trustwave
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
39 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
RT Lawrence
April 30, 2009
Process Magnetic-Stripe
Trustwave
Transactions
S1 Corp. - Postilion Retail
October 31, 2009
Clearing & Settlement
Trustwave
POS Environment
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Sage Payment Solutions
July 31, 2009
Authorization
Verizon Business
(formerly Verus Card
Services)
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
Sallie Mae
April 30, 2009
Payment Gateway
Specialized Security Services
SATELLITE RECEIVERS,
December 31, 2009
Other
K3DES
LTD. (Cash Depot)
Switching
SBI VERITRANS CO., LTD
December 31, 2009
Payment Gateway
ICMS
School-Link Technologies
April 30, 2009
Authorization
Coalfire
IPSP (E-commerce)
Other
SecureNet
June 30, 2009
Authorization
Arsenal Security Group
Clearing & Settlement
Hosting Provider
IPSP (E-commerce)
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Sequoia Retail Systems
July 31, 2009
Authorization
Digital Resources Group
(DRG)
Hosting Provider
Servebase
January 31, 2009
Multi-Currency Payment
Trustwave
Processing
ServiceU
April 30, 2009
MOTO Payment Processing
K3DES
Payment Gateway
Servicios Electrónicos
October 31, 2009
Authorization
403 Labs
Globales S.A. de C.V. (E-
Global)
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
40 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Servicios Electrónicos
October 31, 2009
Clearing & Settlement
403 Labs
Globales S.A. de C.V. (E-
Global)
Issuing Processing
Process Magnetic-Stripe
Transactions
Switching
SHC Direct
April 30, 2009
Loyalty Programs
Trustwave
Shift4
May 31, 2009
Clearing & Settlement
Trustwave
Payment Gateway
Switching
SIA Select Services
December 31, 2008
Check Protection
Self-Assessment
New Merchant Accounts
Rewards/Gift Card Programs
Signature Card Services
October 31, 2008
Customer Relationship
SecurityMetrics
Management
Simmons First National
September 30, 2009 Clearing & Settlement
Trustwave
Corp.
Issuing Processing
SITA Information
April 30, 2009
Authorization
IBM Internet Security
Networking Computing,
Systems
USA Inc.
E-Commerce
Global Distribution System
Six Card Solutions
April 30, 2009
Authorization
Trustwave
Luxembourg S.A.
IPSP (E-commerce)
Payment Gateway
Skipjack Financial Services
February 28, 2009
County Tax Payments
Trustwave
Payment Gateway
Skylight Financial, Inc.
June 30, 2009
Authorization
Information Exchange
Clearing & Settlement
Issuing Processing
SlimCD
September 30, 2009 Payment Gateway
Enterprise Risk Management
SmartEtailing, Inc
September 30, 2009 Hosting Provider
Digital Resources Group
(DRG)
Payment Gateway
SoftHotel
October 31, 2009
Payment Gateway
Mike Kennedy
SoundBite Communications September 30, 2009 Hosting Provider
K3DES
Other
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
41 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Spacenet
May 31, 2009
Switching
Trustwave
Speedpay (AKA Western
December 31, 2009
Other
Trustwave
Union Payment Services)
Spendvision
April 30, 2009
Other
Symantec
Springbok
September 30, 2009 Issuing Processing
K3DES
Stafford Associates
October 31, 2009
Hosting Provider
CrimsonSecurity
Stamps.com
August 31, 2009
Payment Gateway
Trustwave
Stark Brother's Fulfillment
April 30, 2009
IPSP (E-commerce)
Trustwave
Services
MOTO Payment Processing
Payment Gateway
Sterling Payment
August 31, 2009
Clearing & Settlement
Trustwave
Technologies
IPSP (E-commerce)
StoneEagle Services, Inc.
October 31, 2009
Authorization
Information Exchange Inc.
Clearing & Settlement
Payment Gateway
StoresOnline, Inc. /
January 31, 2009
Payment Gateway
SecurityMetrics
iMergent, Inc
Strategic Fulfillment Group / August 31, 2009
IPSP (E-commerce)
Trustwave
Dynamic Resource Group
(SFG/DRG)
MOTO Payment Processing
Payment Gateway
Strategic Information
December 31, 2008
Issuing Processing
Self-Assessment
Technology
Strategic Profits
April 30, 2009
Authorization
MTS Allstream
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Sunbelt Fulfillment Services January 31, 2009
Publication Fulfillment
Self-Assessment
SunGard Availability
February 28, 2009
Hosting Provider
Fortrex Technologies
Services
Superior Financial Systems, September 30, 2009 Other
Trustwave
LLC
SystemPay, LLC
April 30, 2009
Authorization
Digital Resources Group
(DRG)
IPSP (E-commerce)
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
42 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
SystemPay, LLC
April 30, 2009
Payment Gateway
Digital Resources Group
(DRG)
T.K. Keith Company, Inc.
July 31, 2009
MOTO Payment Processing
Verizon
(dba Primax)
Talley Management
December 31, 2008
Self-Assessment
Tangible Software
February 28, 2009
Payment Gateway
Arsenal Security Group
Taylor Corporation
February 28, 2009
IPSP (E-commerce)
RSM McGladrey
Payment Gateway
TD Merchant Services
March 31, 2009
Authorization
Telus Security Solutions
Clearing & Settlement
Tecnicard Inc
May 31, 2009
Authorization
Xtrategies
Clearing & Settlement
Issuing Processing
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
Teleflora
February 28, 2009
Payment Processing
Trustwave
Telekenex, Inc.
June 30, 2009
Other
Trustwave
Teleperformance Canada
June 30, 2009
Other
Tevora Business Solutions
Teleperformance Mexico
March 31, 2009
Other
Tevora Business Solutions
Teleperformance USA
February 28, 2009
Customer Relationship
Tevora Business Solutions
Management
Tellme, A Microsoft
September 30, 2009 MOTO Payment Processing
Trustwave
Subsidiary
Other
Payment Gateway
Telvista - Grupo Tecnico de January 31, 2010
MOTO Payment Processing
Trustwave
Servicios
Teranet Enterprises Inc.
April 30, 2009
Payment Processing
Trustwave
TermNet Merchant Services June 30, 2009
Other
Trustwave
TERREMARK
October 31, 2009
Hosting Provider
AT&T Consulting Solutions
WORLDWIDE, INC. (Data
Return)
The Jay Group
September 30, 2009 IPSP (E-commerce)
K3DES
Payment Gateway
The Members Group
January 31, 2009
Payment Processing
RSM McGladrey
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
43 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Threshold Financial
June 30, 2009
Clearing & Settlement
Dyntek
Technologies
Switching
Ticketmaster, LLC
June 30, 2009
Other
Trustwave
Payment Gateway
Process Magnetic-Stripe
Transactions
TicketNetwork, Inc.
November 30, 2008
E-Commerce
403 Labs
Tickets.com
November 30, 2009
IPSP (E-commerce)
Trustwave
Tier Technologies
April 30, 2009
Authorization
VeriSign
Clearing & Settlement
IPSP (E-commerce)
Other
Time Customer Service
July 31, 2009
Authorization
Neohapsls, Inc
Other
Payment Gateway
TNS Payment Technologies June 30, 2009
Payment Gateway
Trustwave
TNS Smart Network
February 28, 2009
Payment Processing
Trustwave
Toccata
April 30, 2009
Payment Gateway
PSC
Total Merchant Services
February 28, 2009
Clearing & Settlement
Information Exchange
Other
TouchNet
April 30, 2009
Internet Payment Processing Trustwave
Town North Bank Credit
February 28, 2009
Account Management
Trustwave
Card Services
Services
TranLogix, Inc
April 30, 2009
IPSP (E-commerce)
Trustwave
Loyalty Programs
Other
Payment Gateway
Process Magnetic-Stripe
Transactions
TRANSACT24 LIMITED
December 31, 2008
Payment Gateway
Evolution Security Systems
Transactel Panama, Inc
December 31, 2008
Call Center Services
CrimsonSecurity
Transaction Network
June 30, 2009
Other
Trustwave
Services (TNS)
Payment Gateway
Switching
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
44 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
TRANSACTION NETWORK June 30, 2009
Other
Trustwave
SERVICES AUSTRALIA
PTY LTD
Payment Gateway
Switching
Transaction Payment
September 30, 2009 Process Magnetic-Stripe
Trustwave
Systems (TPS NJ)
Transactions
Transaction Processing
May 31, 2009
Authorization
Information Exchange
Partners
Clearing & Settlement
Payment Gateway
Transaction Transport
July 31, 2009
Other
Trustwave
Technologies (T3)
Payment Gateway
Transbank, S.A.
December 31, 2009
Authorization
Xtrategies
Clearing & Settlement
IPSP (E-commerce)
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Transcontinental Direct Mail April 30, 2009
Other
Crimson Security
Gard
TransCore
April 30, 2009
Hosting Provider
Trustwave
Payment Gateway
Transfirst Merchant
May 31, 2009
Solutionary
Services, Inc.
TransVerse Systems
April 30, 2009
Authorization
INFORMATION
EXCHANGE, INC
Clearing & Settlement
Loyalty Programs
MOTO Payment Processing
Other
Payment Gateway
Process Magnetic-Stripe
Transactions
Transysa Inc
August 31, 2009
Issuing Processing
Trustwave
Payment Gateway
Tranzact
May 31, 2009
Authorization
Verisign
Clearing & Settlement
Hosting Provider
MOTO Payment Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
45 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Travelport GDS
February 28, 2009
Global Distribution System
Trustwave
Tridata - DATALINK
December 31, 2009
Other
Trustwave
BANKCARD SERVICES CO.
Triplefin
July 31, 2009
Hosting Provider
Trustwave
TriSource Solutions, LLC
September 30, 2009 Clearing & Settlement
K3DES
(formerly Nobel EFT)
TrustCommerce
April 30, 2009
Payment Gateway
403 Labs
TSD Rental
January 31, 2010
Payment Gateway
Coalfire
TSYS (Issuing Processing)
January 31, 2010
Issuing Processing
Trustwave
TSYS Acquiring Solutions
April 30, 2009
Payment Processing
Trustwave
(formerly Vital Processing
Services)
TSYS Customer Insight
January 31, 2010
Loyalty Programs
TrustWave
(ProphIT)
MOTO Payment Processing
TSYS Loyalty (IM
July 31, 2009
Loyalty Programs
Trustwave
Platform/TLP Platform)
TSYS Prepaid
July 31, 2009
Prepaid Card Processing
Trustwave
TSYS Procard
January 31, 2009
Expense Management
Trustwave
Twin Oaks
February 28, 2009
MOTO Payment Processing
Janus Associates
TxVia
January 31, 2009
Prepaid Payment Services
403 Labs
Ukrainian Processing
December 31, 2008
SRC Germany
Center (UPC)
Ukranian Financial Network
August 31, 2009
Authorization
Security Innovation
Clearing & Settlement
Issuing Processing
Process Magnetic-Stripe
Transactions
Unibanca, S.A.
December 31, 2008
ATM Processing
Xtrategies
Issuing Processing
Unirush, LLC (Rush Card)
December 31, 2009
Payment Gateway
Fortrex Technologies
United Bank Card
July 31, 2009
Clearing & Settlement
Information Exchange
UNITED CARD SERVICE
January 31, 2009
Authorization
Jet Infosystems
Clearing & Settlement
Issuing Processing
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
46 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
UNITED CARD SERVICE
January 31, 2009
Switching
Jet Infosystems
United Payment Services
January 31, 2010
Authorization
Accudata Systems
Clearing & Settlement
MOTO Payment Processing
Payment Gateway
UniteU Technologies, Inc
August 31, 2009
Hosting Provider
SecurityMetrics
Payment Gateway
Universal Money Centers
September 30, 2009 Authorization
Information Exchange
Inc.
Clearing & Settlement
Payment Gateway
UrbanStyle, Inc.
July 31, 2009
Payment Gateway
Security Innovation
US ALLIANCE GROUP, INC May 30, 2009
Other
SecurityMetrics
US Bancorp - Mobile
May 31, 2009
Internet Payment Processing Trustwave
Payment Services
Mobile Payment Processing
US Bancorp - Retail
December 31, 2009
Issuing Processing
TrustWave
Payment Solutions -
Integrated Card Systems
(ICS)
US Bank - Access Online
July 31, 2009
Other
TrustWave
US Bank - Voyager
July 31, 2009
Other
TrustWave
US Bank ATM Banking
April 30, 2009
Payment Processing
TrustWave
US Bank E-Payment Service January 31, 2010
Internet Payment Processing Trustwave
US Bank Gaming Services
April 30, 2009
Payment Processing
TrustWave
US Bank Multiservice
December 31, 2009
Authorization
Trustwave
Aviation
Payment Gateway
Switching
USA ePay
April 30, 2009
Payment Gateway
Trustwave
USA Fulfillment, Inc.
November 30, 2009
Authorization
AT&T Consulting
Clearing & Settlement
Hosting Provider
MOTO Payment Processing
Payment Gateway
USA Payment Systems
December 31, 2009
Authorization
K3DES
Clearing & Settlement
Other
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
47 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
USA Payment Systems
December 31, 2009
Process Magnetic-Stripe
K3DES
Transactions
Switching
USA Technologies
January 31, 2009
Wireless Payment
Trustwave
Processing
V.A.S.A.
August 31, 2009
3-D Secure Access Control
Xtrategies
Server
Authorization
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
VALUE PAY SERVICES
November 30, 2009
Clearing & Settlement
Trustwave
LLC, AN IPC COMPANY
Payment Gateway
Vanco Services
January 31, 2010
Payment Gateway
SecurityMetrics
Process Magnetic-Stripe
Transactions
Varolii Corporation
March 31, 2009
Hosting Provider
Verisign
Payment Gateway
Ventanex
April 30, 2009
Chief Security Officers
VenTek International
November 30, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
VENTURE INFOTEK
December 31, 2009
Authorization
ControlCase
GLOBAL PVT LTD
Clearing & Settlement
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Process Magnetic-Stripe
Transactions
Switching
Veracity Payment Solutions
December 31, 2009
Other
Trustwave
VERePAY (formerly
October 31, 2009
Authorization
Solutionary
VEReFIED)
MOTO Payment Processing
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
48 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Verifi
June 30, 2009
Clearing & Settlement
Trustwave
Payment Gateway
Verifone
June 30, 2009
Payment Gateway
Trustwave
Verifone Transportation
April 30, 2009
Payment Gateway
Fortrex Technologies
Systems
Verizon Business (formerly
November 30, 2008
Payment Transmission
TrustWave
MCI)
Services
Verrus Mobile Technologies November 30, 2009
Authorization
Trustwave
MOTO Payment Processing
Vesdia
April 30, 2009
Loyalty Programs
SecureWorks
Vesta Corporation
June 30, 2009
Clearing & Settlement
Verisign
Vindicia
March 31, 2009
Other
Payment Software Company
(PSC)
Payment Gateway
Visa Argentina S A
August 31, 2009
3-D Secure Access Control
Xtrategies, LLC
Server
Authorization
Clearing & Settlement
IPSP (E-commerce)
Issuing Processing
Loyalty Programs
MOTO Payment Processing
Payment Gateway
Process Magnetic-Stripe
Transactions
Switching
Visa Inc. (including Visa
June 30, 2009
Payment Processing
Trustwave
Debit Processing)
Volusion
January 31, 2010
Hosting Provider
Payment Software Company
(PSC)
VXI Global Solutions, Inc
October 31, 2009
MOTO Payment Processing
Trustwave
Other
WageWorks
April 30, 2009
Other
RSM McGladrey
Washington Metropolitan
December 31, 2009
Authorization
ControlCase
Area Transit Authority
Payment Gateway
Way Systems
October 31, 2009
Payment Gateway
Jefferson Wells
Wayport, Inc.
December 31, 2008
Wireless Payment
TrustWave
Processing
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
49 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
WEB ACTIVE
August 31, 2009
Payment Gateway
Securus Global
CORPORATION PTY LTD
(eWay)
Webteh d.o.o.
May 31, 2009
IPSP (E-commerce)
Sysnet
West - Managed Call Center December 31, 2009
Other
Continuum Worldwide
Services
Corporation
West at Home
September 30, 2009 MOTO Payment Processing
Verizon Business
West Business Services:
April 30, 2009
MOTO Payment Processing
Trustwave
WBS Data Vault
West Direct - Direct
April 30, 2009
MOTO Payment Processing
Trustwave
Response
West Direct - Smartsell
October 31, 2009
Other
Trustwave
West Interactive DataGuard April 30, 2009
MOTO Payment Processing
Trustwave
Wipro Limited - Best Buy
September 30, 2009 Other
SISA Information Security
Pvt Ltd
Xtec
April 30, 2009
Authorization
Information Exchange
Clearing & Settlement
Payment Gateway
Yahoo! Stores
November 30, 2009
IPSP (E-commerce)
Accuvant
YALAMANCHILI
December 31, 2008
Authorization
SISA Information Security
SOFTWARE EXPORTS (P)
LTD
Clearing & Settlement
Issuing Processing
Yapstone Inc.
April 30, 2009
Bill Payment Processing
SecurityMetrics
Yodlee
December 31, 2008
Bill Payment Processing
Verisign
Young America
January 31, 2009
Self-Assessment
YourPay, a First Data
December 31, 2008
Merchant Payment
Trustwave
Company
Processing
Zagrebačka banka d.d.
November 30, 2009
Authorization
Internet Security Systems
Clearing & Settlement
ZEUS Corporation
October 31, 2009
Authorization
NTT Data Security
Corporation
Clearing & Settlement
IPSP (E-commerce)
Payment Gateway
ZirMed, Inc.
April 30, 2009
Payment Gateway
403 Labs
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
50 of 51
List of Compliant Service Providers - All
VALIDATION
SERVICES
SERVICE PROVIDER
DATE
COVERED BY REVIEW (1)
ASSESSOR
AP CEMEA LAC
NA
Zuora, Inc.
June 30, 2009
Authorization
Digital Resources Group
(DRG)
Payment Gateway
(1) PCI DSS assessments represent only a "snapshot" of security in place at the time of the review, and do not guarantee that those security
controls remain in place after the review is complete. These reviews did not cover proprietary software solutions that may be used or sold by
these service providers.
* Current PCI DSS status is under review.
Visa has no duty to clients, merchants, processors or other third parties to obtain or review reports from any party required to
submit a report. Visa is not responsible to any party for the timeliness, accuracy or completeness of any report. Inclusion on this
list indicates only that the service provider successfully validated PCI DSS compliance, based on the report of an independent
Qualified Security Assessor (QSA). Visa does not endorse the service providers or their business processes or practices. Visa has
sole discretion to include or exclude entities on this list.
© 2010 Visa Inc.
51 of 51
