BillingTree

BillingTree Completes 2016 PCI-DSS 3.1, ePHI and SSAE-16 Certification Validation

July 8, 2024         By: Mike Dautner

BillingTree announced today that it has successfully completed 2016 audits for PC-DSS 3.1, HIPPA/ePHI and SSAE 16.

An authorized Third Party Assessor and a Qualified Security Company, certified by the PCI Security Standards Council, issued the certification of validation on June 26th.

BillingTree is pursuing this to ensure the organization securely aligns its policies, procedures and technical systems in an effort to secure PCI, ePHI, sensitive and financial data.

This yearly assessment typically requires an in-depth evaluation of several key areas of business.

The areas of business under a very close watch during these proceedings include: Policies and Procedures; Network Data Flow with Narrative; Documented System and Network Inventory; Physical/Environmental Security, both corporate and data center; Internal & External Vulnerability Assessment; Internal & External Penetration Testing; Encryption; System & Network Hardening Standards; Patch Management; Access Control; Data Storage; Wireless Network Analysis; Testing of Deployed Security Measures; and Monitoring/Response Assessment.

“In an environment that continues to focus on regulation, the connection between clients and their trusted technology providers is crucial,” said Edgars Sturans, CEO and President at BillingTree. “With these critical three audits completed for 2016, customers have validation that BillingTree processes and procedures operate at or above the latest industry standards.”

“Adhering to industry standards yet again confirms security posture at BillingTree is in line with information security’s best practices,” said Anthony Petruso, MegaplanIT’s Director of Compliance Services. “These standards also encourage behaviors such as regular vulnerability scanning, application security reviews, penetration testing, and following best practices of cryptography standards, which will bolster resilience against cyber security threats generally.”