Is Brown Paper Tickets PCI-DSS Compliant?

Brown Paper Tickets is validated compliant with PCI-DSS v3.2 level 1 as both a merchant and service provider.

What is PCI-DSS?

Brown Paper Tickets’ adherence to Payment Card Industry Data Security Standard (PCI-DSS) underlines our ongoing commitment to data security.

The PCI Data Security Standard is a complex security standard that focuses on security management, policies, procedures, network architecture, software design and other critical protective procedures. These security standards are relevant to any merchant or service provider that uses, stores, or transmits information from a payment card.

To be certified PCI-DSS v3.2 Level 1 compliant, Brown Paper Tickets underwent a third party audit confirming adherence to the most up-to-date and demanding PCI standards.

PCI-DSS require a broad variety of security issues, including:

• Maintaining secure systems and infrastructure
• Protecting cardholder data
• Data encryption during storage and transmission
• Physical access controls
• Tracking and logging activity
• Testing
• Personnel training and vetting

Find out more about PCI Security Standards.

We are happy to provide our Attestation of Compliance (AOC) upon request. Please email us to make that request. If you have additional questions regarding website security, contact us.