Company earns Payment Card Industry Data Security Standards compliance for the fourth consecutive year.
Cintas Corp., headquartered in Cincinnati, has earned Payment Card Industry (PCI) Data Security Standards (DSS) compliance for the fourth consecutive year. According to the PCI Security Standards Council, the DSS “provides an actionable framework for developing a robust payment card data security process -- including prevention, detection and appropriate reaction to security incidents.”
“Adhering to the PCI DSS represents our dedication to protecting physical credit card information with the highest level of security,” says Sarah Koucky, senior director of security and compliance, Cintas. “Whether a company needs secure document destruction or storage in a protected facility, our rigorous compliance standards provide our customers with peace of mind that their confidential material will remain safe with Cintas.”
Cintas says it is the longest-running North American National Association for Information Destruction- (NAID-) certified and PCI DSS-compliant document management provider.
To achieve PCI DSS compliance, Cleveland-based SecureState
, an information security management consulting firm, performs audits at Cintas’ shredding and storage locations annually. During the audits, SecureState reviews Cintas’ physical security practices, including its policies and procedures, visitor logs, alarms and surveillance cameras, to ensure compliance with the PCI DSS standards.
“As a focused leader in secure document management services, Cintas is taking a proactive position once again to deliver services held to a high standard of security,” Konrad Fellmann, senior consultant, lead qualified security assessor, for SecureState, says in a press release issued by Cintas. “With credit card information theft on the rise, PCI and other compliance standards continue to be an area of increased focus and Cintas is committed to evolving to meet its customers' needs.”