Data Encryption Policy and PCI Compliance

Alert1 Medical Alert Systems abides by all the Payment Card Industry Data Security Standards (PCI DSS) requirements set by the PCI Security Standards Council. PCI DSS standards were created to keep consumer payment information safe. With Alert1, you can find the perfect medical alarm system for yourself or a loved one, all with the peace of mind that Alert1 is dedicated to keeping your credit card information safe. 

What Is PCI?

Alert1 Medical Alert Systems is PCI compliant. A company is Payment Card Industry compliant once they’ve met all the requirements set by the Security Standards Council (SSC). The SSC is the governing body appointed to develop and maintain the security standards used to determine PCI compliance.

To this end, the SSC created the Data Security Standard (DSS), "to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment”.

These standards were created to increase controls around cardholder data to reduce credit card fraud. At Alert1, we chose to abide by the PCI DSS to bring you greater peace of mind. 

PCI DSS Requirements

There are six control objectives within the DSS requirements. Each objective is broken down into sub-requirements. There are a total of 12 high-level requirements for compliance (which have not changed since the inception of the standard). Alert1 follows all of these requirements to stay PCI compliant. The requirements are:

Control Objectives PCI DSS Requirements Alert1 Competitors
Build and maintain a secure network
  1. Install and maintain a firewall configuration to protect cardhholder data
  2. Do not use vendor-supplied defaults for system passwords and other security parameters 

Protect cardholder data
  1. Protect stored cardholder data
  2. Encrypt transmission of cardholder data across open, public networks 

Maintain a vulnerability management program
  1. Use and regularly update anti-virus software on all systems commonly affected by malware
  2. Develop and maintain secure systems and applications

Implement strong access control measures
  1. Restrict access to cardholder data by business need-to-know
  2. Assign a unique ID to each person with computer access
  3. Restrict physical access to cardholder data

Regularly monitor and test networks
  1. Track and monitor all access to network resources and cardholder data
  2. Regularly test security systems and processes

Maintain an information security policy
  1. Maintain a policy that addresses information security

Click here for more information 

Alert1 is PCI Compliant

One of the major requirements that the SSC requires is the annual Self-Assessment Questionnaire (SAQ). The purpose of the SAQ is to determine that Alert1 Medical Alert Systems is doing what it should to remain PCI compliant.

Each year Alert1 uses the SAQ to review our safety measures to securely handle member payment information. The SAQ asks specific questions about our current security system for processing credit cards. With simple yes or no questions, we are quickly able to determine our PCI compliance for all online orders. Alert1 passed this year with flying colors!

In addition to assessing security systems, the SAQ also reviews our organizational practices on what Alert1 does on the back end of IT to stay PCI compliant. This includes maintaining a secure site, strong firewall, and encrypting any data processed. 

With Alert1, we're here to keep you and your online information safe. 

Keep Your Online Information Secure

Having your credit card information stolen is no laughing matter. With the advent of the Internet, credit card theft is getting easier and easier. No longer do we have to worry about pickpockets—now we must be wary of the pocket pickers of the internet. Be selective about websites you choose to use and conduct business with and take proactive steps to keep your information safe online. 

  • Use websites with security certificates. A security certificate is a data file that encrypts any information being sent between the web browser and website server. Check website security by looking for 'https' at the beginning of a URL. Secure websites will also display a padlock symbol or the word 'secure' before the URL in the search bar. This means that the website you are using has successfully established a website security certificate. 
  • Destroy personal information. Before you upgrade to the latest computer or iPhone, wipe your old device of all personal information. This can be done by checking the owner's manual or company's website to learn how to perform a device reset. Check the device after deleting any information to ensure that nothing was missed. 
  • Keep social media sharing to a minimum. Many internet hackers peruse social media sites in order to gain access to personal information that can be used to answer security questions protecting your online account. Stay one step ahead of internet thieves by regularly reviewing what you share on your social media accounts. If you don't want information staying on the internet forever, it's a good idea to not post it onto social media. 
  • Never share your password. Ever. The easiest way to stay safe online is to keep passwords private. Regularly review and change your passwords to reduce the chance of a hacker gaining access to your account. When setting up a new account, always opt for multiple step account authorization to stay secure. 

Alert1 is making strides to reduce the risk of internet theft happening to you. When you visit our site, you will see the padlock image next to our name, and 'https' at the beginning of all URLs. We are proud to display these signs of a website security certificate along with following all PCI DSS requirements. 

You’re in Good Hands at Alert1

Getting started with Alert1 is easy. With medical alerts systems for at home or on the go, you'll gain peace of mind in no time. Place an order online or give us a call to get started. We're here to keep you safe. 

get started today