<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=286651792909821&amp;ev=PageView&amp;noscript=1">

What is it?

To increase and enhance payment card data security, Visa, Mastercard, American Express, and JCB International came together in September 2006 to form the Payment Card Industry Security Standard Council (PCI SSC). Together, the card companies share ownership in the council, which helps to execute, manage, and govern the Payment Card Industry (PCI), and ensure compliance.

PCI Applicability to One Inc

One Inc is a Service Provider under the PCI Data Security Standard (PCI DSS) which means we are involved in the transmission, processing, and storage of cardholder data, but we are not a payment card or bank. Depending on the volume of card transactions a business handles per year, there are different PCI-compliance levels. The levels are as follows:

  • Level 1: Service Provider stores, processes, and/or transmits over 300,000 transactions per year
  • Level 2: Service Provider stores, processes, and/or transmits less than 300,000 transactions per year 

One Inc is a Level 1 PCI Service Provider. To maintain Level 1 PCI compliance, One Inc is required to validate compliance with PCI DSS by going through an annual PCI assessment conducted by a Qualified Security Assessor. The Security Assessor completes a Report-on-Compliance (ROC) after the assessment. 

PCI Applicability to Insurers

Any business that transmits, processes, or stores cardholder data is required to validate compliance with PCI DSS. Payment card brands manage their own PCI DSS compliance programs. For more specific information on PCI DSS compliance validation requirements, please contact the payment brands directly.

icon_document-generation-gears-200x200

Systems and Organization Controls (SOC)

Established by the AICPA, SOC reports provide assurance on the suitability and design of controls established by One Inc that may impact security, confidentiality, or availability of One Inc applications or services. Regular reviews are conducted by third-party auditors to verify One Inc compliance.

icon_mortgagee-200x200

The National Automated Clearing House Association (Nacha)

Governs the ACH Network, protecting consumers’ sensitive financial data, including bank account and routing numbers.

icon_call-center-single-200x200

Telephone Consumer Protection Act (TCPA)

One Inc complies with the TCPA that restricts telephone solicitations and requires telemarketers to transmit caller ID information. Individuals can sue for up to $1500 should a company violate the TCPA. 

Key Statistics

bar-graph-75-percent

74% of 2019 payment fraud cases were from checks

2021 AFP Payments Fraud and Control Survey

bar-graph-25-percent

25% of global organizations keep cardholder payment data secure

2020 Oct Globe Newswire Article

Discover our Platform

icon_premium-payments-recuring

PremiumPay®

Align your payment experience with core systems and securely process credit card and ACH payments.

Explore PremiumPay 2.0

icon_total-loss-residual copy

ClaimsPay®

Align your payment experience with core systems and securely issue claims via various payment channels.  

Explore ClaimsPay

Want to learn more?

Partner with Us