Emergent Payments is PCI-DSS, EU Safe Harbor and SSAE-16 compliant. We also work with merchants to help them be OFAC compliant.
PCI is the Payment Card Industry standard for security. Emergent Payments is PCI level-1 compliant, and is regularly audited and recertified. Merchants who wish to host their own payment forms will also need PCI certification. Emergent Payments provides client-side encryption to greatly reduce your PCI burden, and we can help you with your certification. You can visit their website here This is part of their mission statement
The PCI Security Standards Council is an open global forum, launched in 2006, that is responsible for the development, management, education, and awareness of the PCI Security Standards, including the Data Security Standard (PCI DSS), Payment Application Data Security Standard (PA-DSS), and PIN Transaction Security (PTS) requirements.
The U.S. Office of Foreign Assets Control, a department of the U.S. Department of the Treasury is responsible for enforcing trade sanctions. You can visit their website here This is their mission statement:
The Office of Foreign Assets Control (OFAC) of the US Department of the Treasury administers and enforces economic and trade sanctions based on US foreign policy and national security goals against targeted foreign countries and regimes, terrorists, international narcotics traffickers, those engaged in activities related to the proliferation of weapons of mass destruction, and other threats to the national security, foreign policy or economy of the United States. OFAC acts under Presidential national emergency powers, as well as authority granted by specific legislation, to impose controls on transactions and freeze assets under US jurisdiction. Many of the sanctions are based on United Nations and other international mandates, are multilateral in scope, and involve close cooperation with allied governments.
SSAE-16 covers Reporting on Controls at a Service Organization. It requires an audit from an accredited accounting firm to verify that Emergent Payments has sufficient controls to provide financial data to your organization. Emergent Payments will also be SOC-2 compliant as of Dec., 2016. You can read more about SSAE-16 here.
This section addresses examination engagements undertaken by a service auditor to report on controls at organizations that provide services to user entities when those controls are likely to be relevant to user entities’ internal control over financial reporting.