Bedford, Mass. – SoundBite Communications, Inc. (NASDAQ: SDBT), a leading provider of on-demand, multi-channel proactive customer communications, today announced its re-certification as a Level 1 Service Provider compliant with the Payment Card Industry Data Security Standard (PCI DSS). This marks the third consecutive year that SoundBite has been PCI certified as a Level 1 service provider. The full list of service providers is available here.
PCI DSS is the industry standard for any merchant or service provider to process, store, or transmit cardholder data. Organizations that outsource the processing of cardholder information including financial institutions, credit card issuers, retailers and other secure enterprises require that their service providers go through the rigorous PCI certification process. These organizations may fall out of compliance themselves if they do business with non-certified service providers.
Level 1 service providers, such as SoundBite, must successfully undergo a stringent, on-site PCI data security assessment conducted by an independent Qualified Security Assessor. This is the most rigorous level of validation available under the PCI Data Security Standard. In order to achieve PCI certification, a service provider must demonstrate that it has information security controls, procedures and technology in place that effectively meet all of the PCI requirements across 12 control areas. Consistently achieving PCI recertification year after year requires operational maturity and continued evidence of success within an information security program.
SoundBite’s Information Security Program is based on industry best practices and recognized standards such as ISO 27002 and NIST 800-53 and includes an annual PCI recertification process. This comprehensive approach ensures that safeguards are in place to protect information entrusted to SoundBite by all of its clients, not only those with a requirement for PCI certification.
“Businesses have zero tolerance for exposing their customers to increased threats of credit card fraud and identity theft,” said John Nye, Director of Information Security and Compliance at SoundBite Communications. “The only way for an organization to demonstrate publicly that it is PCI compliant is to achieve PCI certification as validated by a Qualified Security Assessor. A comprehensive information security program that includes this stringent PCI certification process helps businesses reduce their risks and maintain their PCI compliance.”
In addition to its annual PCI certification, SoundBite routinely submits to external audits of its policies, controls and processes on behalf of its clients. In 2010, SoundBite participated in more than 27 external security audits on behalf of financial institutions, retailers, insurance, healthcare, telecommunications and energy providers. It also received an unqualified opinion in a Statement on Auditing Standards No. 70 (SAS 70) Type II auditor’s report. SAS 70 Type II auditor’s report is based on an in-depth audit of internal and external control activities. This annual report helps assure clients that SoundBite has practices in place to protect client data. Specifically, a Type II report contains an opinion not only on a company’s description and design of controls, but also on the effectiveness of the controls in providing reasonable assurance that control objectives were met.
![the word regulation in a stylized dictionary [Image by creator from ]](/media/images/Credit_Report_Disputes.max-80x80.png)
![Report cover reads One Conversation Multiple Channels AI-powered Multichannel Outreach from Skit.ai [Image by creator from ]](/media/images/Skit.ai_Landing_Page__Whitepaper_.max-80x80.png)
![[Image by creator from ]](/media/images/paper-collections_triggers_1_1.max-80x80.png){kind=small}
![Report cover reads Bad Debt Rising New ebook Finvi [Image by creator from ]](/media/images/Finvi_Bad_Debt_Rising_WP.max-80x80.png)
![Report cover reads Seizing the Opportunity in Uncertain Times: The Third-Party Collections Industry in 2023 by TransUnion, prepared by datos insights [Image by creator from ]](/media/images/TU_Survey_Report_12-23_Cover.max-80x80.png)
![[Image by creator from ]](/media/images/Skit_Banner_.max-80x80.jpg)
![Whitepaper cover reads: Navigating Collections Licensing: How to Reduce Financial, Legal, and Regulatory Exposure w/ Cornerstone company logo [Image by creator from ]](/media/images/Navigating_Collections_Licensing_How_to_Reduce.max-80x80.png)
![Whitepaper cover text reads: A New Kind of Collections Strategy: Empowering Lenders Amid a Shifting Economic Landscape [Image by creator from ]](/media/images/January_White_Paper_Cover_7-23.max-80x80.png)
![Webinar graphic reads Help Wanted: Predictive, Collaborative and Intelligent Contact Data April 25 at 3pm et by TransUnion [Image by creator from ]](/media/images/Landing_Page_2_KAmAKW1.max-80x80.png){kind=small}
![Webinar graphic reads Multi-Channel AI: Improve Contacts & Increase Revenue Compliantly April 4 at 2pm et [Image by creator from ]](/media/images/Skit.ai_InsideARM_Landing_Page_1200x627.max-80x80.png){kind=small}
![Streamline Your Collections Process with Voice AI [Image by creator from ]](/media/images/Streamline_Your_Collections_Process_with_Voice.max-80x80.png){kind=small}
![How to Connect with Today’s Digital Consumer [Image by creator Editor from insideARM]](/media/images/finvi_webinar_thumbnail.max-80x80.png){kind=small}
![Customizable or Configurable? Webinar [Image by creator Editor from insideARM]](/media/images/Landing_Page_2.max-80x80.png){kind=small}
![How to Launch an Omnichannel Collection Strategy [Image by creator Neustar from insideARM]](/media/images/omnichannel-webinar.max-80x80.png){kind=small}
![Breaking Down the CFPB's Opinion on Convenience Fees [Image by creator Editor from insideARM]](/media/images/2022-11-convieniance-fees-webinar.max-80x80.png){kind=small}
![Overcoming Communication Barriers to Reach Your Accounts [Image by creator Editor from insideARM]](/media/images/neustar-overcoming-communications-barriers-thu.max-80x80.png){kind=small}