Skip to main content

SAS70 Certification

Q. Why is SAS70 Type 2 Certification Important (http://en.wikipedia.org/wiki/SAS70)

A. SAS70 indicates professional standards have been used by a service auditor to assess the internal controls of the service organisation. 

In a practical use case scenario, when you are audited, if your service provider is NOT SAS70, you will then have to pay your auditors the roughly $10k to audit each service provider. 

Net/net - SAS70 Type 2 in conjunction with PCI Compliance are the highest standards you will want to see for a service provider in the Billing, Virtual Storefront & Customer Life Cycle Management fields.

Comments

Popular posts from this blog

PCI-at-a-Glance for Gaming

There are four levels of PCI Compliance.  Level I is the highest standard .  Levels III & IV are self audits and should trigger serious red flags within your organization, as there is zero accountability. Why choosing a PCI Level I supplier saves money and limits risk! -         Liability : using a PCI Level I provider means that you absolve yourself from all liability as it pertains to the storage and transmission of credit card data. This means that if there was ever a breach and personal information was revealed, your SERVICE PROVIDER is liable, not your company. o     Imagine your Public Relations Team explaining to your end users that their personal credit card information was compromised because you did not choose a PCI Level I Compliant provider. -        Registration pages: o     You must host registration pages, because they cannot touch credit card data. -        User Self Service: o     You must design, build and maintain USS because they can

beChange | WHY?

I believe that everyone feels alone or questions themselves from time-to-time. When it gets bad, it is akin to losing one's MoJo...where you doubt your instincts and find a bit of paralysis-by-analysis setting in. In baseball it manifests itself as a slump. Pretty soon you are standing at the plate and the ball looks really small...almost like a BB. And because the ball appears so impossibly small, you begin to believe the only way you'll ever hit the ball is if you begin to 'guess what pitch is coming next.' This then leads to BIG SWINGS...at curveballs...or LATE SWINGS...on fast balls. Net/net you look ridiculous! And the biggest thing...you LOOK lost...and everyone in the grandstands can see it! This happens in relationships as well. You start to lose your MoJo and doubt yourself in your relationship. You doubt the other person's feelings...your own contributions emotionally and intellectually...whether the person is still 'into' you...and you get a bit

Long Tail of eCommerce - Payments

Only 30% of Europeans pay with credit / debit cards! You can quickly do some online research and you’ll find that between 29-31% of EU citizens use credit / debit cards and instead prefer ‘localized payment methods. ‘ Localized payment methods drive international eCommerce! By enabling the online Guest to pay with their payment mechanism…online conversion is improved and site retention benefits. The Guest is less likely to commoditize your product due to their ability to pay how they want for what they want. Alternative or localized payments are common worldwide, and drive 10-30% improvement in incremental revenue from non-cannibalized sources. PAYMENT TYPES - GLOSSARY Credit Card - A card that allows a retail or business consumer to make purchases using a card and account where there is a predetermined borrowing arrangement up to a fixed monthly level. A plastic card bearing a number, the name of the cardholder, an expiration date and a Verification Code/Value. Used for purcha