KVH launches PCI DSS compliant cloud service

Source: KVH

KVH Co. Ltd., Asia's leading information delivery platform headquartered in Tokyo, Japan, today announced it has launched the cloud service "KVH PCI DSS Ready Cloud" compliant with Payment Card Industry Data Security Standard[1] (PCI DSS), a proprietary information security standard for organizations handling cardholder information, in partnership with Link, Inc.

This service combines Link's PCI DSS compliant cloud service "PCI DSS Ready Cloud" and KVH's "KVH Private Cloud," which offers dedicated IT computing environments including dedicated servers, switches and storage, as system infrastructure.

Online shopping with credit card payment continues to increase as online services and credit card point reward programs become more attractive and convenient. Japan's domestic business-to-consumer e-commerce market expanded to JPY 9.5 trillion[2] in 2012, representing an increase of 12.5% from the previous year. Furthermore, the emergence of services enabling smart-phones to be used as a credit card reader is also allowing small merchants to accept credit card payment regardless of the location.

Considering the high degree of confidentiality of credit card users' data when utilizing online payment services, PCI DSS has defined the system platform requirements for handling this confidential data, and organizations that handle credit card users' data are required by the government to be compliant to PCI DSS. Moreover, credit card clearing houses today face the challenge of staffing with sufficient experience and expertise to fully understand not only the PCI DSS requirements of the system platform but also the complexity and high costs required in building such a system.

KVH PCI DSS Ready Cloud, designed to address these issues with a system platform specialized for the credit card industry, offers resources necessary to comply[3] with PCI DSS as a cloud service (PaaS) combining Link's experience and expertise on PCI DSS compliance. By leveraging KVH Private Cloud as the system platform, companies can implement their own dedicated environments that meet the strict industry standards faster, simpler, and at a lower cost without having significant investments on software and hardware.

Pricing for KVH PCI DSS Ready Cloud has a one-time installation fee of JPY 1.8 million with a standard recurring monthly charge of JPY 900,000. Companies utilizing this service are able to reduce their installation costs to approximately one-fifth compared to using traditional environments, which would cost approximately JPY 15 million in one-time fees and JPY 1.2 million monthly charges. KVH PCI DSS Ready Cloud can be implemented in approximately 3 months, saving customers significant time and effort since traditional implementations normally take 6 months to one year and require lengthy negotiation and coordination with software and hardware vendors.

As an introductory campaign for those companies that subscribe to this service before June 30, 2014, KVH is offering a reduced monthly recurring rate of JPY 800,000 for the first six months after the service has been implemented.

"I am very pleased that we are able to partner with Link and offer the KVH PCI DSS Ready Cloud service" said Ikuo Mega, Senior Director, Partner Sales of KVH. "In combining Link's expertise in PCI DSS and delivering advanced system integration services with KVH's cloud service capabilities, we believe that we can provide a highly cost effective and operationally efficient integrated solution to our financial service customers."

"We are very pleased to partner with KVH for this new service offering. By combining our industry specific solutions with KVH's infrastructure service, which has earned the trust from financial service companies for its high quality, we believe that we can offer new and innovative solutions to our customers," said Katsuji Magami, Director of Link, Inc.

[1] Established by the five major international card companies (American Express, Discover, JCB, MasterCard and Visa)
[2] Ministry of Economy, Trade and Industry: Results of the E-Commerce Market Survey was Compiled meti.go.jp/english/press/2013/0927_04.html
[3] Please note that compliance with PCI DSS is not guaranteed by only utilizing this service and that compliance to PDI DSS may require a separate corporate inspection and audit. 

Comments: (0)