LEADING THE WAY IN CUSTOMER DATA SECURITY

LEADING THE WAY IN CUSTOMER DATA SECURITY

Boosting its position as the Channel Islands’ leading data-hosting provider, JT has announced that its hosting facilities have met the stringent technical and operational standards required by the international payment card industry.

In achieving the Payment Card Industry Data Security Standard (PCI-DSS), JT’s commitment to delivering the most broadly accredited and secure hosting facilities in the Channel Islands has been recognised. It currently operates the Channel Islands’ only SOC certified (Service Organisation Certification) data-centres, which also comply with the European standard ISO27001.
JT’s data-centers offer companies wishing to host their IT equipment in a PCI-DSS compliant environment, assurance around two key areas of compliance; restricting access to physical data and; maintaining policies that address information security for all personnel.

Managing Director of JT (Guernsey) Limited, Paul D Taylor, said: “This announcement consolidates our investment in our portfolio of critical infrastructure to support global businesses. We all trust our card providers and banks to keep our details safe but fraud is an ever-present danger, and our hosting facilities are now certified to assist in combatting it. By providing the type of secure, environmentally controlled and protected facilities that businesses require, we’re proud to deliver a service that goes above and beyond requirements, and offers protection against the unexpected. Reaching the PCI DSS standard is enabling us to widen our customer proposition, drive inward investment to the CI and continue to gain greater global exposure for JT.

“Hosting is a fiercely competitive sector and our investment assures our place in meeting and exceeding the regulatory governance from UK-headquartered companies, meaning our data-centers now ‘tick all the boxes’ for their own compliance and governance.”
In preparation for achieving PCI DSS compliance, JT contracted a leading external risk, security and compliance business to undertake an information security risk assessment that established its current security position, tested the maturity of security controls that protect personal and commercial information and delivered consultancy to guide JT through the complex process. This culminated in certification against the exacting requirements of PCI DSS, evidence compliance and issue certification against the appropriate elements of the standard via an independent auditor.