News & Events
|
About Carrera
|
Solutions
|
Services
|
Home
News & Events
About Carrera 
Arrow News & Events
Working @ Carrera
Contact Us
Find Us
Main image of man with outstretched arm
Services
News & Events
Carrera Sells CSR Resourcing
Are you PCI Compliant?
Microsoft Gold Certified Partner
© 2007 Carrera Systems Ltd.
7 The Forum, Icknield Way, Tring, Hertfordshire, HP23 4JY. Tel: 01442 827100

Accessibility / Disclaimer / Privacy Policy / Contact Us
Services
June 2008

As of 15th June 2008 CSR Resourcing will no longer be part of the Carrera Group. As a result of a trade sale, a number of the team have left the business and will continue as part of a separate organisation.

Carrera will continue to offer an IT recruitment services via a small team on focused consultants so should you require any IT professionals please contact recruitment@carreragroup.co.uk

If you have any questions regarding this matter please contact Carrera on 01442 827100.
Services
February 2008
A new upgrade of TravelPower is currently being developed that will address the need to be compliant with the new Payment Card Industry Compliance Standards. These new standards come into effect on 1st April 2008 and the new upgrade will be released to coincide with this.

The misuse of credit cards has become a major worldwide issue in commerce and industry over the last few years. There has been a huge growth in credit card fraud in all industries and the Payment Card Industry has implemented some new Compliance Standards which come into effect on 1st April 2008.

Carrera Systems Limited’s intention is to ensure that this new product is as compliant with these rules as possible. However, it is each company’s responsibility to ensure that all aspects of their operation are compliant.

The main areas addressed by the new TravelPower version are:
  • Encryption of credit card Primary Account Numbers (PAN’s)
  • Encryption of PNR’s
  • Encryption of transactions for APACS authorisation
  • Masking of credit card numbers on invoices
  • Removal of a system wide log-in
Please note MS SQL/Server is a mandatory requirement.

Whilst this is not a mandatory upgrade the following issues need to be addressed:
  • If unencrypted credit card data is stored on a system a company could be deemed liable to be in breach of the PCI Compliance Standards and therefore incur heavy penalties from credit card vendor(s). Apart from any potential fines, their Merchant status could be suspended or even permanently removed. Please see www.pcicomplianceguide.org for further information.
  • Any member of staff that can see credit card information must be formally authorised by the company to do so. The role of temporary staff should also be considered in this context.
  • The presentation of credit card data (the full 16 digit number) on any printed item also breaches the PCI standards and only the last four digits can be shown.
  • Carrera Systems Limited would not be allowed to store a copy of any database at our offices unless the database is PCI Compliant. This could have support implications.
If a company does not store credit card data on a system this upgrade is not needed. Carrera Systems Limited will support versions of TravelPower that are PCI Compliant or not. There will be further potential enhancements to the system once further clarity has been established through the PCI Compliance channels.

If you would like more information on how to purchase this upgrade, or how these new regulations could affect you, call 01442 827100.