the mastercard compliant service provider · pdf filethe mastercard compliant service provider...
TRANSCRIPT
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
1&1 Internet AG 05/02/2013 Security Research & Consulting GmbHEurope
1Link (Guarantee) Limited 11/22/2013 TrustwaveSAMEA
1stPayGateway 05/20/2013 IBM Internet Security Systems (ISS)US
2000Charge Inc. 07/03/2013 Information Exchange Inc.US
24 Solutions AB 06/14/2013 NTT Security Ltd.Europe
2C Processor USA, LLC 02/25/2014 Information Exchange Inc.US
2C2P Pte., Ltd. 01/06/2014 TrustwaveAsia Pacific
2Checkout, Inc. (2CO E-Commerce Payments LTD)
01/26/2013 ProtivitiUS
3 Delta Systems, Inc. 09/23/2013 FortrexUS
3Cinteractive, LLC 08/31/2013 AT&T Consulting Solutions, Inc. (Verisign)US
3dCart (Informat 2000 Corp) 02/20/2013 SecurityMetricsUS
3V Transaction Services Ltd 03/28/2013 Espion LTDEurope
888 US Ltd (for the Delaware & New-Jersey & Nevada sites) (888 US Ltd, 888 Liberty, 888 Atlantic, 888 Holdings, Cassava, Dixie)
12/15/2013 GRSee ConsultingUS
888extramoney.com (Extrameasures) 05/24/2013 Coalfire Systems, Inc.US
A6IT Ltd. 06/26/2013 Kyte Consultants, Ltd.Europe
ABC Financial Services, Inc. 06/25/2013 TrustwaveUS
Abtran Ltd. 10/01/2013 RitsEurope
Friday, March 21, 2014 Page 1 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Acadaca, LLC 03/10/2014 FortrexUS
Accel Networks 03/19/2014 TrustwaveUS
Accelerated Payment Technologies: a division of Global Payments Direct, Inc.
07/15/2013 Payment Software Company (PSC)US
Accelya Madrid - Vivaldi Product 12/30/2013 TrustwaveEurope
Acceptiva, LLC 03/06/2014 TrustwaveUS
Accertify, Inc. 02/25/2014 Halock Security LabsUS
Accesso, LLC 03/06/2014 TrustwaveUS
AccountNow/Ready Financial Group 08/06/2013 TrustwaveUS
Accullink Inc. (Acculynk, Inc.) 02/06/2014 TrustwaveUS
ACI Worldwide (eps) AG 12/16/2013 Solutionary, Inc.Europe
ACI Worldwide, Inc. - eCommerce Division - Columbus (ORCC-Columbus)
10/02/2013 TrustwaveUS
ACI Worldwide, Inc. - eCommerce Division - Parsippany (ORCC - eCommerce Parsippany Division)
10/01/2013 TrustwaveUS
ACI Worldwide, Inc. - eCommerce division - Princeton
05/23/2013 TrustwaveUS
ACI Worldwide, Inc. (PRM, Retail On Demand, and Postilion Retail Environments)
12/27/2013 TrustwaveUS
Adaptive Payments, Inc. 11/15/2013 403 Labs, LLCUS
Aditya Birla Minacs Worldwide Inc. 07/12/2013 TrustwaveCanada
Advam Pty Ltd. 01/30/2014 Securus Global ConsultingAsia Pacific
Advent Financial 11/04/2013 DirectDefenseUS
Adyen B.V. 06/03/2013 TrustwaveEurope
Aegis USA, Inc. 06/12/2013 AT&T Consulting Solutions, Inc. (Verisign)US
Affiliated Acceptance Corporation 10/11/2013 TrustwaveUS
Affina, LLC (HGS-USA) 01/24/2014 Coalfire Systems, Inc.US
Friday, March 21, 2014 Page 2 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Affinion Benefits Group 12/27/2013 TrustwaveUS
Affinion International 10/22/2013 TrustwaveEurope
Affinity Solutions 12/10/2013 Coalfire Systems, Inc.US
Agilysys NV LLC 07/02/2013 Coalfire Systems, Inc.US
Aimia Proprietary Loyalty Canada Inc. - Enhancement Services
06/19/2013 K3DES LLCCanada
Aimia Proprietary Loyalty U.S. Inc. (formerly Carlson Marketing Group)
05/28/2013 ControlCaseUS
Airline Reporting Corporation (ARC) 11/08/2013 Brightline CPAs & Associates, Inc.US
Aizan Technologies Inc. 09/30/2013 DatassurantCanada
Akamai Technologies Inc. 07/31/2013 NeohapsisUS
Alacriti, Inc. 01/24/2014 igxglobal, Inc.US
Alaska Option Services Corporation 03/22/2013 K3DES LLCUS
Alegeus Technologies, LLC 04/02/2013 TrustwaveUS
Alert Communications Ltd. 06/18/2013 Kyte Consultants, Ltd.Europe
Aliaswire, Inc. 11/25/2013 igxglobal, Inc.US
Alliance Data - Retail Services 11/19/2013 Verizon/CybertrustUS
Allied Wallet Ltd. (GTBill, Baltic Bill) 04/06/2014 TrustwaveUS
Allus Global BPO Center 02/06/2014 Trustwave
Alpha Card Services Inc. 10/18/2013 Information Exchange Inc.US
Alpha Payments Cloud, LLC (Global Payments Cloud)
05/30/2013 DatassurantUS
Altech Card Solutions, a division of Altech Data (Pty) Limited
12/21/2012 TrustwaveSAMEA
AMARA Tech (Pty) Ltd. 10/30/2013 Sysnet Ltd.SAMEA
Amazon.com, Inc. 05/31/2013 Coalfire Systems, Inc.US
Amdocs, Inc. 05/22/2013 FishNet SecurityUS
Friday, March 21, 2014 Page 3 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
American Bancard, LLC (Touchsuite) 01/10/2014 Enterprise Risk ManagementUS
Americaneagle.com (Svanaco, Inc.) 10/24/2013 FortrexUS
Anderson Zaks Ltd. 01/09/2014 2-sec Ltd.Europe
AOC Solutions, Inc. 10/01/2013 FortrexUS
AOL Inc. 11/25/2013 IOActive, Inc.US
APCO Limited 07/10/2013 Kyte Consultants, Ltd.Europe
Aperia Solutions (formerly Data Delivery Services, Inc.)
05/03/2013 Coalfire Systems, Inc.US
Apriva, LLC (formerly APPSware Wireless, LLC) 07/25/2013 TrustwaveUS
Arab Financial Services B.S.C. 05/02/2013 SISA Information Security Pvt. Ltd.SAMEA
Area101, Inc 10/02/2013 Security Horizon, Inc.US
Argus Payments Inc. 12/13/2013 403 Labs, LLCUS
Aria Systems, Inc. 12/19/2013 TrustwaveUS
Armenian Card CJSC (ARCA) 08/23/2013 InformzaschitaEurope
Artez Interactive 12/15/2013 ControlCaseCanada
Arvato Distribution GmbH 01/07/2014 TUV SUD Management Service GmbHEurope
Arvato Finance Services Ltd. 04/20/2013 TUV SUD Management Service GmbHEurope
Ashburn International 12/06/2013 FortConsult A/SEurope
AsiaPay (Hong Kong) Limited 02/27/2014 TrustwaveAsia Pacific
ASJ Inc. 06/07/2013 Verizon/CybertrustAsia Pacific
Asseco SEE Teknoloji A.Ş (formerly Elektronik Sanal Ticaret Bilisim Hizmetieri A.S. (EST A.S.))
03/18/2013 Evolution LTDEurope
AT&T Managed Services – Security Event and Threat Analysis (SETA)
11/15/2013 TrustwaveUS
AT&T Hosted Integrated Contact Services (AT&T HICS)
09/13/2013 TrustwaveUS
AT&T Managed Firewall Service - Premise Based 06/28/2013 TrustwaveUS
Friday, March 21, 2014 Page 4 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
AT&T Managed Hosting and Application Services 10/21/2013 TrustwaveUS
AT&T Managed Services - AT&T Content Delivery Network (ACDN)
07/24/2013 TrustwaveUS
AT&T Managed Services - AT&T Encryption Services (AES)
10/16/2013 TrustwaveUS
AT&T Managed Services - AT&T Network Based IP VPN Remote Access Service/AT&T VPN Tunneling Service (ANIRAIAVTS)
05/07/2013 TrustwaveUS
AT&T Managed Services - AT&T Virtual Private Network Service (AVPN)/Enhanced Virtual Private Network (EVPN)/Private Network Transport (PNT)
06/28/2013 TrustwaveUS
AT&T Managed Services - Intrusion Detection Services & Intrusion Prevention Services (IDS/IPS)
06/28/2013 TrustwaveUS
AT&T Managed Services - IP Telephony and LAN Services (IPT/LS)
06/28/2013 TrustwaveUS
AT&T Managed Services - Managed Router Services (MRS)
06/28/2013 TrustwaveUS
AT&T Managed Services - Network Based Firewall (NBFW)
06/28/2013 TrustwaveUS
AT&T Managed Services - VoiceTone/Interactive Voice Services-Advanced Plus
06/28/2013 TrustwaveUS
AT&T Synaptic Compute as a Service (CaaS) 01/14/2014 TrustwaveUS
AT&T Synaptic Hosting 10/29/2013 TrustwaveUS
AT&T Synaptic Platform as a Service (PaaS) 01/22/2014 TrustwaveUS
AT&T Synaptic Storage as a Service (SaaS) 01/22/2014 TrustwaveUS
AT&T Ultravailable Storage 04/14/2013 TrustwaveUS
AT&T WiFi Services 03/10/2014 TrustwaveUS
Athenahealth, Inc. 12/09/2013 TrustwaveUS
Atlatl, Inc (First One Now, LLC; Simply Easier Payments)
10/28/2013 TrustwaveUS
Friday, March 21, 2014 Page 5 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
ATOS Information Technology GmbH 08/15/2013 usd AGEurope
Atos Services (M) Sdn Bhd. 11/08/2013 TrustwaveAsia Pacific
ATOS Worldline (Belgium) - (Banksys) 03/14/2014 TrustwaveEurope
Atos Worldline GmbH 12/06/2013 usd AGEurope
Atos Worldline India Pvt. Ltd (Worldline E-payment Services)
01/23/2014 TrustwaveSAMEA
Atos Worldline SAS (France) 09/11/2013 TrustwaveEurope
Atrada Trading Network AG 12/05/2013 TUV SUD Management Service GmbHEurope
Auchan, LLC 11/29/2013 InformzaschitaEurope
AudienceView Ticketing Corporation 07/15/2013 NCI Secured IntelligenceCanada
Auric Systems International (Appropriate Solutions, Inc.)
09/30/2013 Payment Software Company (PSC)US
Aurora Financial Systems, Inc. 05/15/2013 403 Labs, LLCUS
Autoscribe Corporation (PaymentVision) 05/19/2013 FortrexUS
Avectra 04/25/2013 Coalfire Systems, Inc.US
AXA Assistance Canada Inc 03/31/2013 Secure State ConsultingUS
AzeriCard LLC 06/10/2013 TrustwaveEurope
Bamcard 04/24/2013 VOC-Consultancy BVEurope
Bancard S.A. 06/17/2013 CYBSEC Security SystemsLatin Americ
BancTec, Inc. 12/31/2012 TrustwaveUS
Bank Organization for Payments Initiated by Cards Ltd (BORICA)
08/14/2013 Security Research & Consulting GmbHEurope
Bankalararası Kart Merkezi A.Ş. (BKM) 03/14/2013 Biznet Information SystemsEurope
Bankart - Procesiranje Placilnih Instrumentov d.o.o.
04/13/2013 IBM Internet Security Systems (ISS)Europe
BankCard USA Merchant Services 01/23/2014 TrustwaveUS
Barclaycard ePDQ 12/02/2013 TrustwaveEurope
Friday, March 21, 2014 Page 6 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Barclaycard SmartPay 08/22/2013 TrustwaveEurope
Bayern Card-Services GmbH (BCS) 03/07/2013 usd AGEurope
BC Victoriabank SA (JSCB Victoriabank) 11/18/2013 TrustwaveEurope
Beanstream Internet Commerce Inc. 01/13/2014 Control Gap Inc.Canada
Bendigo Community Telco 08/31/2013 K3DES LLCAsia Pacific
BEPSA del Paraguay SAECA 02/15/2013 CYBSEC Security SystemsLatin Americ
Bescontact, Ltd. (i-free) 06/21/2013 Digital SecurityEurope
Bigcommerce Pty Ltd. (formerly Interspire Pty 05/13/2013 Payment Software Company (PSC)Asia Pacific
Bill 1st, LLC 10/30/2013 SecurityMetricsUS
Billing System Corporation 11/26/2013 International Certificate Authority of Mgt SystAsia Pacific
Billltrust (Factor Systems, Inc.) 03/29/2013 CrimsonSecurityUS
Blackbaud - Sphere 01/17/2013 Brightline CPAs & Associates, Inc.US
Blackbaud Payment Services 02/12/2014 Brightline CPAs & Associates, Inc.US
BluePay Processing LLC 09/30/2013 TrustwaveUS
Bluesnap Inc. 07/24/2013 Comsec Consulting, Ltd.SAMEA
BMI Fulfillment Services (Bluemenfield Marketing, INC)
06/01/2013 UHY Advisors TX, LLCUS
Bora Payment Systems LLC 06/25/2013 RaveneyeUS
BPS Info Solutions, Inc. (UltraCart) 08/01/2013 CompliancePoint, Inc.US
Braintree Payment Solutions 02/05/2014 TrustwaveUS
Bridge2 Solution 12/22/2012 K3DES LLCUS
BridgePay Network Solutions, Inc. (T-Gate Payments)
04/29/2013 A-Lign Security and Compliance ServicesUS
Brightwell Payments Inc. (formerly Prepaid Solutions Inc.)
02/05/2014 Information Exchange Inc.US
Brinkman Financial Company, L.P. 05/31/2013 K3DES LLCUS
BSG Payments Inc. (BSG Clearing LLC) 02/14/2014 TrustwaveUS
Friday, March 21, 2014 Page 7 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
BTB Soft, Inc. 01/31/2014 igxglobal, Inc.US
Buckaroo Online Payment Services B.V. 09/12/2013 TrustwaveEurope
Bypass 04/05/2013 SecurityMetricsUS
BZWBK SA (Bank Zachodni WBK SA) 03/14/2014 Sysnet Ltd.Europe
Cabal Brazil Ltda. 02/13/2014 TrustwaveLatin Americ
Cale Access AB 03/05/2013 TrustwaveEurope
Caledon Card Services 05/21/2013 Secured Net Solutions Inc.Canada
Cantaloupe Systems, Inc. 08/12/2013 Truvantis, Inc.US
Capita Business Services (Capita Software Services)
11/26/2013 TrustwaveEurope
Capital Card Services, Inc. 04/02/2013 TrustwaveUS
Capital Payments LLC (Bluefin Payment Systems / Blue Financial Corporation)
06/13/2013 403 Labs, LLCUS
Card Access Services Pty Ltd. 07/12/2013 TrustwaveAsia Pacific
Card Assets, LLC (formerly BV Card Assets) 11/01/2013 CompliancePoint, Inc.US
Card Express, Inc. 01/28/2013 Information Exchange Inc.US
CardConnect (formerly Princeton Payments Solutions, LLC)
09/19/2013 SecurityMetricsUS
CardFlex Inc. 03/01/2013 K3DES LLCUS
Cardinal Commerce Corporation 12/11/2013 Payment Software Company (PSC)US
Cardlink S.A. 05/24/2013 Encode SAEurope
Cardlink Services Limited (CSL) (The BPAY Group; BPAY Pty Ltd)
06/26/2013 Securus Global ConsultingAsia Pacific
Cardpay Inc. 08/20/2013 Vectra CorporationAsia Pacific
CardProcess GmbH (VR-PAY Virtuell, POS-Netzbetrieb)
10/14/2013 Security Research & Consulting GmbHEurope
CardSmith, LLC 08/08/2013 TrustwaveUS
CardSpring 10/29/2013 TrustwaveUS
Friday, March 21, 2014 Page 8 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Cardstream Limited 09/13/2013 AmbersailEurope
Cardtranz 04/26/2013 TrustwaveUS
Cardtronics Inc. 05/31/2013 K3DES LLCUS
CardWorks Servicing, LLC 02/12/2014 TrustwaveUS
Carlson Hotels, Inc. 11/18/2013 Coalfire Systems, Inc.US
Carta Solutions Processing Services Corp. 07/26/2013 TrustwaveCanada
CartaSi S.p.A. (formerly Key Client Cards & Solutions S.p.A.)
07/02/2013 Verizon/CybertrustEurope
Cartera Commerce LLC (formerly Vesdia Corporation)
06/17/2013 NeohapsisUS
Cashier Live, LLC 11/15/2013 TrustwaveUS
CashLINQ Group, LLC 08/21/2013 SecurityMetricsUS
Cashtronics Ltd. 08/19/2013 Kyte Consultants, Ltd.Europe
CBC Companies, Inc. (CBCInnovis, Inc. / Innovis Data Solutions, Inc.)
05/23/2013 Verizon/CybertrustUS
C-CARD 01/29/2014 Verizon/CybertrustEurope
CDC Software Canada Ltd - (Truition Ecommerce) 03/27/2013 Payment Software Company (PSC)Canada
CDS Global Inc. (PayDQ Gateway) 11/26/2013 Solutionary, Inc.US
Cedar Document Technologies 01/14/2014 igxglobal, Inc.US
Cendyn (Central Dynamics) 01/29/2014 SecurityMetricsUS
CenPos Inc. 09/16/2013 Enterprise Risk ManagementUS
Centershift 01/31/2013 SecurityMetricsUS
Central Payment Corp (Smartpay Merchant Services)
04/08/2013 TrustwaveUS
Centrum Rozliczeń Elektronicznych Polskie ePłatności S.A. (PeP)
03/13/2013 IBM Internet Security Systems (ISS)Europe
Certain Software, Inc. 09/09/2013 Coalfire Systems, Inc.US
Certified Payments 04/26/2013 TrustwaveUS
Friday, March 21, 2014 Page 9 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Certitrade AB 05/13/2013 FortConsult A/SEurope
Cetrel a SIX Group Company 07/10/2013 IT WorksEurope
CGI Bank and Card Services 05/14/2013 TrustwaveEurope
Charge Anywhere, LLC (Comstar Interactive) 04/24/2013 TrustwaveUS
Chargeback Guardian 01/07/2013 SecurityMetricsUS
Chargify, LLC 01/24/2014 Brightline CPAs & Associates, Inc.US
Checkout Technology Limited 10/31/2013 Sysnet Ltd.Europe
China Unionpay Data Services Co., Ltd (CUPData)
03/03/2013 TrustwaveAsia Pacific
ChronoPay B. V. 10/02/2013 Security Research & Consulting GmbHEurope
Cintas Document Management - Shredding 05/10/2013 Crowe Horwath LLPUS
Cintas Document Management - Storage 05/10/2013 Crowe Horwath LLPUS
Civica UK Ltd 07/26/2013 TrustwaveEurope
CJSC Cyberplat 04/16/2013 Sysnet Ltd.Europe
CJSC PC "CardStandard" (Previously West Siberian Processing Center)
02/19/2014 TrustwaveEurope
Clear Choice Merchant Services (ClearGate) 06/14/2013 Information Exchange Inc.US
Clearent 06/06/2013 Coalfire Systems, Inc.US
ClearTran 05/31/2013 SecurityMetricsUS
Cleverbridge AG 02/11/2014 Security Research & Consulting GmbHEurope
CNHC, LLC (ePay Healthcare) 01/15/2014 403 Labs, LLCUS
Cobalt Telephone Technologies 05/10/2013 TrustwaveEurope
CollegeNET 03/26/2013 Coalfire Systems, Inc.US
Columbus Data Services LLC (CDS) (Innovus) 04/05/2013 FishNet SecurityUS
Comdata Inc. 10/11/2013 K3DES LLCUS
CommuniGate GmbH 01/15/2013 usd AGEurope
Compass Plus Ltd. 10/15/2013 TrustwaveEurope
Friday, March 21, 2014 Page 10 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Complete Payment Systems (Latvia) 10/15/2013 NTT Security Ltd.Europe
Comprise Technologies, Inc. 03/12/2014 403 Labs, LLCUS
Computer Services, Inc. 05/20/2013 Crowe Horwath LLPUS
Computercentrum C.van de Velden B.V. (CCV Holland)
03/03/2014 TUV SUD Management Service GmbHEurope
CompuTop Wirtschaftsinformatik GmbH 04/04/2013 TUV SUD Management Service GmbHEurope
Conductor Tecnologia S/A 01/31/2014 Cipher InformaticaLatin Americ
Confederacion Espanola de Cajas de Ahorros (CECABANK)
06/30/2013 S21sec Gestion, S.A.Europe
Connexions Loyalty Travel Solutions (CLTS) 10/17/2013 TrustwaveUS
Connextions, Inc. 06/21/2013 TrustwaveUS
Consorcio Credicard C.A. 11/01/2013 IQ Information QualityLatin Americ
Consorcio de Tarjetas Dominicanas, S.A. (Cardnet.com)
07/31/2013 AT&T Consulting Solutions, Inc. (Verisign)Latin Americ
Consorzio Triveneto S.p.A. 01/16/2014 KIMA Projects & ServicesEurope
Continuum Commerce Solutions Ltd. 01/11/2013 Foregenix LimitedEurope
ControlScan (formerly CRE Secure Payments LLC)
07/12/2013 Coalfire Systems, Inc.US
Convenient Payments, LLC (formerly Government Payments LLC)
12/04/2013 TrustwaveUS
Convergence Technologies, Inc. (IPPAY) 02/15/2014 403 Labs, LLCUS
Convergys – Interaction Recording Platform 09/27/2013 FortrexUS
Convergys (Professional Tuning Services) [formerly Convergys Intervoice]
07/30/2013 FortrexUS
Convergys CCMS 09/30/2013 FortrexUS
Convergys Encore 12/09/2013 FortrexUS
Convergys Home Agent 08/12/2013 FortrexUS
Convio, Inc. 01/11/2013 TrustwaveUS
Friday, March 21, 2014 Page 11 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Co-Op Financial Services (CU COOPERATIVE SYSTEMS, INC)
03/17/2014 Tevora Business SolutionsUS
Corduro Inc. (Corduro Processing; Corduro Merchant Services)
04/18/2013 TrustwaveUS
CoreCard Software, Inc. 10/01/2013 CompliancePoint, Inc.US
CoreCommerce 03/11/2014 TrustwaveUS
Cornerstone Group of Companies Limited 04/17/2013 The Herjavec Group Inc.Canada
Corporacion De Servvicios Financieros y Alianzas, C. por A. (Cosefi)
12/31/2012 TrustwaveLatin Americ
CorporatePay Limited 05/20/2013 NTT Security Ltd.Europe
Corserv Holdings Inc. 08/26/2013 CompliancePoint, Inc.US
Corum Group Ltd. 08/14/2013 TrustwaveAsia Pacific
Corvus Info d.o.o 09/12/2013 TrustwaveEurope
Credencial Argentina S.A. 10/24/2013 CYBSEC Security SystemsLatin Americ
Credibanco (Asociacion Gremial De Instituciones Financieras Credibanco)
07/30/2013 XtrategiesLatin Americ
Credimatic S.A 12/30/2013 TrustwaveLatin Americ
Credit Card Services Inc. (BankCard Services) 12/30/2013 TrustwaveUS
Credit Guard Ltd. 06/24/2013 Comsec Consulting, Ltd.Europe
CreditCall Communications Ltd. 04/12/2013 Foregenix LimitedEurope
Credomatic of Florida, Inc. 08/30/2013 1st Secure IT, LLCUS
Croem, Inc. (Sigma Processing Group) 02/28/2013 TrustwaveUS
Crosskey Banking Solutions 08/08/2013 Verizon/CybertrustEurope
CSC Airline Solution Denmark A/S 08/30/2013 FortConsult A/SEurope
CSCBank SAL (CSC Lebanon) 02/11/2014 O-C GroupSAMEA
CSG Media (Content Direct) 03/30/2013 Solutionary, Inc.US
CSG Systems, Inc. - Interactive Messaging 04/30/2013 Solutionary, Inc.US
Friday, March 21, 2014 Page 12 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
CSI Software 12/11/2013 TrustwaveUS
CSID (CSIDentity) 11/08/2013 Enterprise Risk ManagementUS
CSU Cardsystem S.A. 10/07/2013 TrustwaveLatin Americ
CT-Paiement (CT-Payment) 01/14/2014 TrustwaveCanada
Cubic Transportation Systems, Inc. (Vancouver Compass Program)
11/01/2013 Payment Software Company (PSC)
Cvent, Inc. 08/01/2013 True Digital Security, Inc.US
CyberSource (including Authorize.Net and CyberSource Managed Hosting) (CYBS KK)
08/30/2013 TrustwaveUS
Cynergy Data LLC (Merchants for Change) 08/31/2013 Coalfire Systems, Inc.US
DanDomain A/S 04/18/2013 FortConsult A/SEurope
DanubePay, a.s. 03/28/2013 Wincor Nixdorf s.r.o.Europe
Data Oceans 08/01/2013 CompliancePoint, Inc.US
Data Paradigm, Inc. (DPI) 07/26/2013 Specialized Security Services, Inc.US
Data Stream 06/25/2013 Information Exchange Inc.US
DataCash Group Limited 08/15/2013 SecuriCentrixSAMEA
DataDivider 08/25/2013 K3DES LLCUS
Dataline Systems, Inc. 12/15/2013 TrustwaveUS
DataMatx, Inc. 12/10/2013 A-Lign Security and Compliance ServicesUS
DataPath, Inc. 02/06/2013 403 Labs, LLCUS
DataPipe, Inc. 10/25/2013 TrustwaveUS
Datatrans AG 06/01/2013 TUV SUD Management Service GmbHEurope
Datatrax Technologies, Inc. 01/24/2014 SecurityMetricsCanada
Davis + Henderson, Ltd. Partnership 07/15/2013 NCI Secured IntelligenceCanada
DAXKO, LLC 03/30/2013 Brightline CPAs & Associates, Inc.US
DeepCove Laboratories, Ltd. 09/25/2013 TrustwaveCanada
Demandware, Inc. 08/08/2013 SecurityMetricsUS
Friday, March 21, 2014 Page 13 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Desjardin Card Services (Fédération des caisses Desjardins du Québec)
09/09/2013 TrustwaveCanada
DHD Media (Digital Hemisphere Development LLC)
07/09/2013 TrustwaveUS
DIBS Payments Services A/S 05/13/2013 FortConsult A/SEurope
Digit Secure India Pvt Ltd. 05/31/2013 SecuriCentrixSAMEA
Digital Payment Technologies Corp. 05/29/2013 Payment Software Company (PSC)Canada
Digital River Inc. 07/12/2013 Network Security Professionals (NetSPI)US
Digital River World Payments AB (a wholly owned subsidiary of Digital River, Inc.)
07/12/2013 Network Security Professionals (NetSPI)US
Dimension Data Cloud Solutions, Inc. (OpSource, Inc.)
03/28/2013 Brightline CPAs & Associates, Inc.US
Direct Insite Corp 08/15/2013 Enterprise Risk ManagementUS
Direct Mail Processors Inc. 01/30/2014 FortrexUS
Direct Payment Solutions Limited (Direct Payment Solutions U.S. LLC) (Paymentexpress)
11/26/2013 Confide Ltd.Asia Pacific
Docdata Payments B.V. 08/01/2013 TrustwaveEurope
Duncan Solutions (Duncan Parking Technologies Inc.)
06/14/2013 SecurityMetricsUS
Duncan Solutions (Professional Account Management)
08/30/2013 SecurityMetricsUS
Dydacomp Development Corp. 02/28/2013 Coalfire Systems, Inc.US
Dzetta Processing Center 02/13/2014 Security Research & Consulting GmbHEurope
Early Warning Services, LLC 05/29/2013 AccuvantUS
Easy Soft LLC 03/03/2014 Sysnet Ltd.Europe
EasyCash GmbH 05/01/2013 TrustwaveEurope
Ebocom, LLC (POST Integrations Inc.) 04/03/2013 Verizon/CybertrustUS
EC Suite LLC 08/31/2013 Coalfire Systems, Inc.US
eCard Solutions Ltd. (ECS) 06/14/2013 AmbersailSAMEA
Friday, March 21, 2014 Page 14 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
eCentricSwitch (Pty) Tld 01/14/2013 TrustwaveSAMEA
E-Complish, LLC 02/12/2014 TrustwaveUS
Econtext (Formerly Digital Garage Inc.) 11/30/2013 International Certificate Authority of Mgt SystAsia Pacific
ECSC Limited 04/10/2013 O-C GroupEurope
Edenred USA (Wired Commute, Commuter Check Services Corp, Edenred USA/North America)
07/12/2013 Compass IT ComplianceUS
EdgeCast Networks, Inc. 03/29/2013 Tevora Business SolutionsUS
Edgil Associates, Inc 05/29/2013 igxglobal, Inc.US
EDPS (Electronic Data Processing Source SA) 09/13/2013 O-C GroupEurope
EFT Canada Inc. 08/26/2013 DatassurantCanada
EFTEX Pty Ltd 01/08/2013 Witham LaboratoriesAsia Pacific
EFX Corp. 03/15/2013 CompliancePoint, Inc.US
Egyptian Banks Company (EBC) 05/14/2013 NCC GroupSAMEA
Eigen Development, LTD. 10/08/2013 Payment Software Company (PSC)Canada
Elan Financial Services - Core Services 04/12/2013 TrustwaveUS
Elavon (Formerly Southern Datacomm) 09/12/2013 Verizon/CybertrustUS
Elavon Merchant Services Europe 04/15/2013 Verizon/CybertrustUS
Elavon NA (formerly NOVA) 05/12/2013 Verizon/CybertrustUS
Electracard Services Private Limited 09/10/2013 Verizon/CybertrustSAMEA
Electronic Funds Source, LLC (EFS) 12/18/2013 Lattimore, Black, Morgan and Cain, P.C.US
Electronic Merchant Systems (OH based) 03/29/2013 TrustwaveUS
Electronic Payment Exchange (EPX) (Phoenix Payment Systems, Inc.)
04/27/2013 Payment Software Company (PSC)US
Electronic Payments, Inc. (NY) 07/30/2013 Information Exchange Inc.US
Electronic Processing Services, LLC 05/01/2013 Information Exchange Inc.US
Friday, March 21, 2014 Page 15 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Electronic Transaction Systems Corporation (ETS Corp)
09/12/2013 Verizon/CybertrustUS
Element Payment Services Inc. 10/17/2013 SecurityMetricsUS
Emdeon 01/31/2014 Lattimore, Black, Morgan and Cain, P.C.US
Emerchants Payment Solutions Limited 03/08/2013 Vectra CorporationAsia Pacific
Emerging Markets Payments (EMP) (formerly Mediterranean Smart Cards Company)
12/06/2013 TrustwaveSAMEA
Emerging Markets Payments Jordan (EMP-J) 01/28/2014 TrustwaveSAMEA
Enacomm, Inc. 02/24/2014 True Digital Security, Inc.US
Endeavour Internet Business Solutions Ltd. (EIBS) 04/30/2013 Odyssey Consultants LimitedEurope
eNett International (Singapore) Pte. Ltd. 11/01/2013 Securus Global ConsultingAsia Pacific
enStage Software Pvt Ltd. 07/04/2013 Stickman ConsultingSAMEA
Envoy Services Sweden AB 10/28/2013 FortConsult A/SEurope
ePay A/S 03/25/2013 FortConsult A/SEurope
Epay.bg 09/27/2013 TrustwaveEurope
Epicor Retail Solutions Corporation 03/14/2014 TrustwaveCanada
Epoch.com, LLC 11/15/2013 ProtivitiUS
eProcessing Network, LLC 03/22/2013 TrustwaveUS
eProcurement Services LLC 06/14/2013 K3DES LLCUS
EPS LT, UAB (formerly Universalios Valdymo Sistemos (UVS Lithuania))
12/20/2013 TrustwaveEurope
Equens Nederland BV (Equens SE) 03/27/2013 Noordbeek B.V.Europe
Equiant Financial Services, Inc. 04/23/2013 DatassurantUS
E-Revenue Gateway Ltd. (RC 867112) 05/11/2013 Nethost Legislation LtdSAMEA
Ernex 07/18/2013 TrustwaveCanada
Escalion S.a.r.l. (Escalion) 11/15/2013 NTT Security Ltd.Europe
Ethoca Ltd. 09/13/2013 Sysnet Ltd.Canada
Friday, March 21, 2014 Page 16 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Euro Payment Group GmbH 10/08/2013 TUV SUD Management Service GmbHEurope
Euro-Information 03/03/2014 TrustwaveEurope
Euronet Pakistan (PVT) Limited 05/21/2013 Risk Associates/Gaming Associates Inc.SAMEA
Euronet Services India Private Limited 08/09/2013 ControlCaseSAMEA
Euronet Worldwide, European EFT Business 06/06/2013 Security Research & Consulting GmbHEurope
European Payment Services LDT 05/30/2013 SecurityMetricsEurope
Eventbrite 04/01/2013 Coalfire Systems, Inc.US
EVO Merchant Services Inc. 10/21/2013 TrustwaveUS
Evolution1 03/29/2013 Compass IT ComplianceUS
Evry Card Acquiring Services 03/14/2014 FortConsult A/SEurope
EVRY Card Services AB 07/02/2013 FortConsult A/SEurope
EVRY Card Services AS 12/20/2013 FortConsult A/SEurope
Evry FD Card (EVRY AS Norge) 03/04/2013 FortConsult A/SEurope
Evry Issuing Services 10/04/2013 FortConsult A/SEurope
EVRY VINO/MAAS 01/10/2014 FortConsult A/SEurope
E-xact Transactions (Canada) 06/13/2013 TrustwaveCanada
Experient, Inc. 12/06/2013 TrustwaveUS
Expert Global Solutions, Inc. (NCO Group, Inc. and APAC Customer Services, Inc.)
12/20/2013 Payment Software Company (PSC)US
ExpiTrans, Inc. (ET Data Processing Services Inc.)
07/17/2013 ControlScanUS
EZ Facility.com, Inc. 09/13/2013 TrustwaveUS
Ezic, Inc. 09/13/2013 Information Exchange Inc.US
Ezidebit Pty Ltd. 08/07/2013 TrustwaveAsia Pacific
Farepayment AB 07/11/2013 TrustwaveEurope
Fast Print & System LTDA (Fast Solutions) 06/13/2013 TrustwaveLatin Americ
Friday, March 21, 2014 Page 17 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Fexco Merchant Services (Fexco DCC (Dynamic Currency Conversion Limited))
05/10/2013 O-C GroupEurope
Fidelity Information Services - (FIS) International - EMEA-Ljubljana Branch Solvenia
04/25/2013 TrustwaveEurope
Fidelity Information Services - Electronic Payment Presentment (FIS-EPP)
07/25/2013 TrustwaveUS
Fidelity Information Services - EZCard Charlotte, NC
03/13/2013 TrustwaveUS
Fidelity Information Services - Output Solutions St. Petersburg
10/21/2013 TrustwaveUS
Fidelity Information Services - St. Petersburg Check
04/03/2013 TrustwaveUS
Fidelity Information Services (FIS) - Certegy Card Services
09/13/2013 TrustwaveUS
Fidelity Information Services (FIS) - Certegy Limited
11/08/2013 TrustwaveEurope
Fidelity Information Services (FIS) - Chicago Authnet
01/02/2014 TrustwaveUS
Fidelity Information Services (FIS) - Chile 02/03/2014 TrustwaveLatin Americ
Fidelity Information Services (FIS) - Clear Commerce - New Berlin
05/10/2013 TrustwaveUS
Fidelity Information Services (FIS) - EFT / Payment Processing Norcross, GA
04/05/2013 TrustwaveUS
Fidelity Information Services (FIS) - Issuing Solutions, Debit Account, Healthcare Payment Card and Prepaid Card Solutions
06/25/2013 TrustwaveUS
Fidelity Information Services (FIS) - Profile Outsourcing
12/13/2013 TrustwaveUS
Fidelity Information Services (FIS) Australasia Pty PP Ltd
02/12/2013 TrustwaveAsia Pacific
Fidelity Information Services (FIS)- Card Processing and Data Center Little Rock, AR
06/28/2013 TrustwaveUS
Friday, March 21, 2014 Page 18 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Fidelity Information Services (FIS) Electronic Payments New Berlin, WI
09/13/2013 TrustwaveUS
Fidelity Information Services (FIS) PayDirect Solutions - Government (fomerly Link2Gov, Inc.)
02/12/2013 TrustwaveUS
Fidelity Information Services (FIS) Payment and Solutions Services (PSS) India
10/11/2013 TrustwaveAsia Pacific
Fidelity Information Services (FIS) Remittance Processing, Lisle IL.
02/03/2014 TrustwaveUS
Fidelity Information Services (FIS) Remittance Processing, St. Petersburg, FL.
10/14/2013 TrustwaveUS
Fidelity Information Services (FIS) Sunrise Prepaid Processing
07/19/2013 IBM Internet Security Systems (ISS)US
Fidelity Information Services (FIS) WebVault 01/22/2013 TrustwaveUS
Fidelity Information Services, Inc. - Output Solutions San Antonio
02/13/2013 TrustwaveUS
Financial Software and Systems Pvt. Ltd. (FSSNeT- Payment Gateway Services)
08/29/2013 ControlCaseSAMEA
Financial Transmission Network, Inc. 04/04/2013 TrustwaveUS
Finanz Informatik Technologie Service GmbH & Co. KG
02/14/2014 usd AGEurope
FINEXUS International Sdn Bhd 04/06/2014 TrustwaveAsia Pacific
Fintrax Teoranta 05/07/2013 TrustwaveEurope
FireHost Inc. 05/22/2013 Coalfire Systems, Inc.US
First American Payment Systems, LP 05/20/2013 IBM Internet Security Systems (ISS)US
First Atlantic Commerce Ltd. 03/21/2013 Coalfire Systems, Inc.Latin Americ
First Data - Concord Electronic Financial Systems (CEFS) (FD Clientline Reporting)
09/13/2013 TrustwaveUS
First Data - Concord Financial Technologies (CFT) - (First Data Prepaid Services)
09/13/2013 TrustwaveUS
First Data - Global Gateway (First Data - LinkPoint/First Data YourPay)
09/13/2013 TrustwaveUS
Friday, March 21, 2014 Page 19 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
First Data - Government Solutions (FDGS) 09/13/2013 TrustwaveUS
First Data - Paypoint Electronic Payment Systems 09/13/2013 TrustwaveUS
First Data - RemitCo 09/13/2013 TrustwaveUS
First Data - Retail ATM Services 09/13/2013 TrustwaveUS
First Data - Secure Transport (Datawire) 09/13/2013 TrustwaveUS
First Data - Slovakia--Serbia 10/14/2013 TrustwaveEurope
First Data – STAR (Networks, Processing and Systems Inc.)
09/13/2013 TrustwaveUS
First Data - TeleCheck 09/13/2013 TrustwaveUS
First Data CAC, (Processing Center, S.A.) 03/13/2014 TrustwaveLatin Americ
First Data International - China 09/13/2013 TrustwaveAsia Pacific
First Data International - Cono Sur (POSNET S.R.L)
03/11/2014 TrustwaveLatin Americ
First Data International - Deutschland (Germany) 09/13/2013 TrustwaveEurope
First Data International - Hellas (Greece) 11/01/2013 TrustwaveEurope
First Data International - Italy 11/13/2013 TrustwaveEurope
First Data International - Latvia 11/15/2013 TrustwaveEurope
First Data International - OmniPay Limited 10/29/2013 TrustwaveEurope
First Data International - Polska S.A. (Polcard) 05/15/2013 TrustwaveEurope
First Data International - TeleCash / First Data Global Services
09/13/2013 TrustwaveEurope
First Data International - UAB First Data Lietuva (Lithuania)
11/15/2013 TrustwaveEurope
First Data International - United Kingdom 10/31/2013 TrustwaveEurope
First Data International ANZ (First Data ANZ; FD ANZ)
09/13/2013 TrustwaveAsia Pacific
First Data Merchant Services (PaySpring Merchant Services)
09/13/2013 TrustwaveUS
Friday, March 21, 2014 Page 20 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
First Data Resources 09/13/2013 TrustwaveUS
First National of Nebraska, Inc. (FNNI, FNBO, FNMS Inc., SPC Inc.)
12/30/2013 TrustwaveUS
First National Technology Solutions 03/08/2013 TrustwaveUS
First Ukrainian International Bank 03/12/2013 FortConsult A/SEurope
FirstView Financial, LLC. 09/13/2013 TrustwaveUS
FIS - Acquiring Solutions, ATM Driving & Gateway Services
06/14/2013 TrustwaveUS
FIS - Biller Solution Product (SSP) 09/12/2013 TrustwaveUS
FIS - Everlink 10/11/2013 TrustwaveCanada
FIS - Merchant Acquiring and Credit Card Account Processing Services
06/17/2013 TrustwaveUS
FIS Brazil, Fidelity Processadora e Services SA (FPS)
05/08/2013 TrustwaveLatin Americ
Fiserv - ACCEL/Exchange 04/23/2013 Payment Software Company (PSC)US
Fiserv - Advantage 08/08/2013 Payment Software Company (PSC)US
Fiserv - Bank Solutions Eastern Region Atlanta Service Center Service Center
09/30/2013 Payment Software Company (PSC)US
Fiserv - Bank Solutions Precision Outsourcing 08/30/2013 Payment Software Company (PSC)US
Fiserv - Bank Solutions Premier Outsourcing Western Region Houston & Dallas Service Centers
02/26/2014 Payment Software Company (PSC)US
Fiserv - Bank Solutions Product Management, Development and Support
07/11/2013 Payment Software Company (PSC)US
Fiserv - Biller Solutions - CheckFreePay 08/22/2013 Payment Software Company (PSC)US
Fiserv - Biller Solutions (Fiserv eBill) 12/23/2013 Payment Software Company (PSC)US
Fiserv - BillMatrix 09/26/2013 Payment Software Company (PSC)US
Fiserv - Card Services (Formerly assessed as Fiserv - EFT and Fiserv - Card Services - Credit)
03/11/2013 Payment Software Company (PSC)US
Fiserv - CashEdge 05/10/2013 Payment Software Company (PSC)US
Friday, March 21, 2014 Page 21 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Fiserv - Cube oL 05/09/2013 Payment Software Company (PSC)US
Fiserv - CUSA 10/24/2013 Payment Software Company (PSC)US
Fiserv - Customer Solutions 11/11/2013 Payment Software Company (PSC)US
Fiserv - Digital Channels (formerly Fiserv - E-Banklng Hillsboro)
09/16/2013 Payment Software Company (PSC)US
Fiserv - Electronic Payments (formerly Fiserv Electronic Banking, Biller Solutions and Itech)
10/22/2013 Payment Software Company (PSC)US
Fiserv - Enterprise Technology Group - Brookfield, WI Data Center
10/23/2013 Payment Software Company (PSC)US
Fiserv Enterprise Technology Group - John's Creek, GA and Lewisville, TX Data Centers
09/21/2013 Payment Software Company (PSC)US
Fiserv - Galaxy 05/06/2013 Payment Software Company (PSC)US
Fiserv - Lending Solutions - Contact and Service Center (Formerly Amherst Call Center)
03/04/2013 Payment Software Company (PSC)US
Fiserv - Lending Solutions - LoanServ 11/21/2013 Payment Software Company (PSC)US
Fiserv - Signature Development Lake Mary 07/30/2013 Payment Software Company (PSC)US
Fiserv - Virtual Branch 12/20/2013 Payment Software Company (PSC)US
Fiserv - XP2 05/06/2013 Payment Software Company (PSC)US
Fiserv - Xroads 01/18/2014 Payment Software Company (PSC)US
Fiserv Bank Solutions - Cleartouch Outsourcing 09/13/2013 Payment Software Company (PSC)US
Fiserv Bank Solutions - Premier Outsourcing Eastern Region Brookfield Service Center
08/27/2013 Payment Software Company (PSC)US
Fiserv Bank Solutions - Premier Outsourcing Western Region Des Moines Service Center
12/18/2013 Payment Software Company (PSC)US
Fiserv India Pvt. Ltd. 07/25/2013 ControlCaseSAMEA
Fiserv OnCU 07/30/2013 Payment Software Company (PSC)US
Fiserv Output Solutions - Electronic Document Delivery (EDD)
02/24/2014 Payment Software Company (PSC)US
Florists Transworld Delivery, Inc 12/31/2013 Halock Security LabsUS
Friday, March 21, 2014 Page 22 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Forte Payment Systems (formerly ACH Direct) 01/10/2014 TrustwaveUS
Fosdick Fullfillment Corporation 12/28/2012 TrustwaveUS
FoxyCart.com, LLC 03/31/2013 Specialized Security Services, Inc.US
FreedomPay, Inc. 08/01/2013 CompliancePoint, Inc.US
Frontline Processing 06/23/2013 SecurityMetricsUS
FrontStream Payments, Inc. / FirstGiving Inc. 06/03/2013 ControlCaseUS
Fry, Inc., a Michigan corporation (MICROS-Retail) 08/13/2013 TrustwaveUS
FSV Payment Systems, Inc. 05/30/2013 K3DES LLCUS
Fujitsu America 02/28/2014 Verizon/CybertrustUS
FundsTech Corporation PTY (LTD) (FNDS3000 Corp)
08/30/2013 TrustwaveSAMEA
FundTech (BankServ) - (Total TransAct; MobileScape; SameDayPay)
01/21/2013 TrustwaveUS
Future Commerce Co., Ltd. 04/24/2013 BroadBand Security (BBSec)Asia Pacific
Galileo Processing, Inc. 02/14/2014 SecurityMetricsUS
GARANTI BANKASI A.S/GARANTI TEKNOLOJI 10/11/2013 Biznet Information SystemsEurope
Gateway Ticketing Systems, Inc. 08/27/2013 FortrexUS
Gazcardservice Ltd. 10/31/2013 InformzaschitaEurope
Genesys - Angel.com Division (formerly Angel.com Incorporated and Microstrategy Inc.)
10/18/2013 FishNet SecurityUS
Genesys - SoundBite Division (formerly SoundBite Communications)
09/25/2013 Verizon/CybertrustUS
Genpact Guatemala SA 11/13/2013 ControlCaseLatin Americ
Genpact LLC Manila, Philippines (GEMA- RCF, GECA, GEMA RSF, Green Dot, Lexus Nexus, Dollar General, AstraZeneca, CITI Mortgage, Walgreen, HomeDepot, VFS Global, AETNA)
08/22/2013 ControlCaseAsia Pacific
GETNET Tecnologia em Processamento de transações eletrônicas H.U.A LTDA
06/30/2013 Cipher InformaticaLatin Americ
Friday, March 21, 2014 Page 23 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Gisland Ltd. (Cassava, Brigend, 888 Holdings, Dixie, VMSI srl, 888 Spain PLC)
12/31/2013 GRSee ConsultingEurope
Global Card Services (now part of Elavon) 05/11/2013 Verizon/CybertrustUS
Global Cash Card - (World Processing Limited) 11/16/2013 Coalfire Systems, Inc.US
Global Collect Services B.V. (Global Collect Services USA)
07/01/2013 TrustwaveEurope
Global Communication Planning Co., Ltd. 06/28/2013 BSI Management Systems Japan K.K.Asia Pacific
Global Electronic Technology 01/14/2013 403 Labs, LLCUS
Global Payments - GP UK LLP. 02/20/2014 Payment Software Company (PSC)US
Global Payments Direct Inc. (Global Payments Global Service Center)
02/21/2014 Payment Software Company (PSC)US
Global Payments Europe, s.r.o. 11/08/2013 Payment Software Company (PSC)Europe
GMO Payment Gateway, Inc. (includes GMO Epsilon, Inc. environment)
12/28/2013 International Certificate Authority of Mgt SystAsia Pacific
GoConcierge.net (Innsight Reports LLC.) 01/31/2013 Accretive Solutions Operating Corp.US
GoDaddy.oom, LLC (Quick Shopping Cart) 12/13/2013 Coalfire Systems, Inc.US
goEmerchants, LLC 05/20/2013 IBM Internet Security Systems (ISS)US
Goldmine World, Inc. (World Bankcard Services) 08/13/2013 Sysnet Ltd.US
Google Inc. 01/31/2014 Securisea, Inc.US
Google Payments (formerly TxVia, Inc.) 03/15/2013 403 Labs, LLCUS
Gotham Ingedigit Financial Processing Corp. (Power2Process, P2P)
09/13/2013 TrustwaveUS
Govolution, Inc. 05/20/2013 IBM Internet Security Systems (ISS)US
GP Net 09/30/2013 BSI Management Systems Japan K.K.Asia Pacific
Grant Street Group 01/16/2014 SecurityMetricsUS
Green Dot Corporation (Next Estate Communications, Inc.)
10/09/2013 SecurityMetricsUS
Groupon 05/03/2013 TrustwaveUS
Friday, March 21, 2014 Page 24 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
GSI Commerce Solutions, Inc. 10/11/2013 TrustwaveUS
Guthy Renker Fulfillment Services 10/14/2013 TrustwaveUS
Hamer Enterprises 11/08/2013 SecurityMetricsUS
Handpoint ehf. (formerly Median - rafraen midlun hf.)
07/09/2013 TrustwaveEurope
Hanover Direct Inc. 02/12/2013 FortrexUS
Harris Connect LLC 01/27/2014 TrustwaveUS
Harte-Hanks, Inc. 09/11/2013 CyberEnsure, LLCUS
Heartland Payment Systems, Inc. 04/20/2013 Coalfire Systems, Inc.US
Helcim Inc. 05/21/2013 Secured Net Solutions Inc.Canada
Hewlett Packard (Canada) Co. - (TD Bank Environment)
06/14/2013 TELUS Security SolutionsCanada
Hewlett-Packard Brazil Ltda. (Cielo Environment) 05/31/2013 TrustwaveLatin Americ
Higher One, Inc. (CASHNet) 01/20/2014 Coalfire Systems, Inc.US
HighRadius Corporation 08/27/2013 TrustwaveUS
Hitrust Incorporated 12/20/2013 Verizon/CybertrustAsia Pacific
HostedPCI Inc. 03/11/2013 NCI Secured IntelligenceCanada
Hosting.com, Inc. 07/12/2013 TrustwaveUS
Hotelbeds Technology, S.L.U. 12/20/2013 Internet Security Auditors, S.L.
Hotline LLC 06/21/2013 BMS Consulting LLCEurope
HP - Enterprise Services Regional Cards and Payments Utility
03/01/2013 TrustwaveUS
HP - Hewlett Packard - Brazil (HP Brazil Cards-Utility)
05/31/2013 TrustwaveLatin Americ
HP Pay for Convenience (Formerly EDS) 05/27/2013 ProtivitiUS
HPC Heidelberger Payment Consulting GmbH 04/11/2013 usd AGEurope
Hughes Network Systems 09/25/2013 IBM Internet Security Systems (ISS)US
Friday, March 21, 2014 Page 25 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Hybris Canada (formerly iCongo, Inc.) 07/22/2013 FishNet SecurityCanada
hyperWALLET Systems Inc. 10/21/2013 Bell CanadaCanada
i2c, Inc. (US, Canada, Latin America, Europe, Asia Pac, and SAMEA)
11/01/2013 TrustwaveUS
IBM Payment Systems 10/11/2013 TrustwaveEurope
IDT Financial Services LLC 05/20/2013 ANXeBusiness Corp.US
In Fifth Gear 08/15/2013 TrustwaveUS
Inatec Payment AG (Inatec Solutions GmbH) 08/28/2013 Infinity Security ConsultingEurope
Index Systems Inc. 05/30/2013 Megaplanit, LLCUS
Industry Retail Group, Inc. 02/12/2014 Coalfire Systems, Inc.US
Inet-Cash GmbH 03/14/2014 usd AGEurope
InfoCision Management Corporation (K & L Teleservices)
08/27/2013 SecurityMetricsUS
InfoGroup 03/27/2013 Solutionary, Inc.US
InfusionSoft 07/31/2013 SecurityMetricsUS
Ingenico Iberia S.L. 09/26/2013 TrustwaveEurope
Innotrac, LLC 09/27/2013 TrustwaveUS
Insight Card Services 12/30/2013 Information Exchange Inc.US
INSOnline Limited 06/18/2013 usd AGEurope
InstaMed Communications 02/12/2014 TrustwaveUS
Integral Computers Ltd. 05/13/2013 TrustwaveEurope
InteliSpend Prepaid Solutions 08/19/2013 IBM Internet Security Systems (ISS)US
Intelligent Payments Group (Myriad Payments Ltd, Matrix Payments Ltd)
02/07/2014 TrustwaveEurope
Intellipay, Inc. 01/03/2014 TrustwaveUS
Interactive Communication International, Inc. (InComm) – Datawave Systems, Inc.
09/28/2013 IBM Internet Security Systems (ISS)US
Friday, March 21, 2014 Page 26 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Interactive Transaction Solutions Limited (ITS) 11/15/2013 O-C GroupEurope
InterCard AG 12/19/2013 TUV SUD Management Service GmbHEurope
INTERCEPT EFT 09/20/2013 Coalfire Systems, Inc.US
Interface Security Systems – Secure Managed Broadband
04/03/2013 SecurityMetricsUS
International Automated Transaction Services (IATS)
12/16/2013 IBM Internet Security Systems (ISS)US
International Bancard Corporation 11/08/2013 Information Exchange Inc.US
International Card Processing Services Ltd. (ICPS) (Mauritius Commercial Bank Ltd. (MCB))
08/07/2013 ControlCaseSAMEA
International Card Systems AD (Casys) 06/28/2013 TUV SUD Management Service GmbHEurope
International Commerce Solutions, Inc. 09/11/2013 SecurityMetricsUS
Internet Payment Exchange, Inc. (IpayX) 06/30/2013 Megaplanit, LLCUS
Internet Payment Service, Inc. 03/22/2013 BSI Management Systems Japan K.K.Asia Pacific
Internet Ticketing Systems, Inc. (PrintTixUSA, Diamond Payment Systems, Diamond Ticketing Systems, ImagiTix)
07/26/2013 SecurityMetricsUS
InterPoynt, LLC 01/24/2014 TrustwaveUS
Intersections Inc. 10/20/2013 ControlCaseUS
Interswitch Limited 09/26/2013 TrustwaveSAMEA
Intesa Sanpaolo Card limited liability company for card business
12/06/2013 TrustwaveEurope
Intesa Sanpaolo Card payment card processing and development Ltd
10/10/2013 TUV SUD Management Service GmbHEurope
Intrix Technology Inc. 02/27/2014 TrustwaveUS
Intuit BackOffice (Intuit Inc. - Innovative Merchant Solutions, LLC)
10/28/2013 TrustwaveUS
Intuit Electronic Clearing House (ECHO, Inc.) 03/25/2013 TrustwaveUS
Intuit, IMS (Innovative Merchant Services) 10/28/2013 TrustwaveUS
Friday, March 21, 2014 Page 27 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Intuition Systems, Inc. 10/31/2013 SecurityMetricsUS
IP Payments Pty Ltd. 12/27/2012 Vectra CorporationAsia Pacific
iPayment Technologies, Inc. 04/08/2013 TrustwaveUS
IPG Holdings Ltd. 11/19/2013 403 Labs, LLCEurope
IPS Group Inc. (US) 10/16/2013 Tevora Business SolutionsUS
iQmetrix Software Development Corp. 10/15/2013 Seccuris Inc.Canada
Iridium Corporation Limited 01/24/2014 SecuriCentrixEurope
IRN Payment Systems 10/25/2013 Information Exchange Inc.US
Iron Mountain Information Management, Inc. 09/25/2013 TrustwaveUS
IT Card Centrum Technologii Ptatniczych SA (IT Card S.A.)
08/06/2013 IBM Internet Security Systems (ISS)Europe
Iveri Payment Technology (Pty) Ltd 06/14/2013 TrustwaveSAMEA
J.J. Mackay Canada Limited / Mackay Meters, Inc. 11/15/2013 TrustwaveCanada
J.P. Morgan Pay Connexion 03/29/2013 Experis Finance US LLCUS
Japan Card Network Co., Ltd. (CardNet Online Center)
12/27/2012 NRI Secure TechnologiesAsia Pacific
JCC Payment Systems 04/19/2013 TrustwaveEurope
JetPay, LLC 04/09/2013 RaveneyeUS
JHA Passport EFT Solutions 07/24/2013 Coalfire Systems, Inc.US
JHA Payment Processing Solutions 07/24/2013 Coalfire Systems, Inc.US
JNR, Inc. 03/15/2013 Moss Adams LLPUS
Joint Electronic Teller Services Limited (JETCO) 03/06/2013 Evolution LTDAsia Pacific
Jonas Fitness, Inc. 07/25/2013 Payment Software Company (PSC)US
J-Payment Inc. 04/30/2013 International Certificate Authority of Mgt SystAsia Pacific
JSC "International Financial Solutions" 11/22/2013 Security Research & Consulting GmbHEurope
JSC Georgian Card 10/03/2013 TrustwaveEurope
JSC Kazkommertsbank (KazKom) 11/15/2013 FortConsult A/SSAMEA
Friday, March 21, 2014 Page 28 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
JSC Preprocessing center (Uniteller) 07/08/2013 Digital SecurityUS
JSC UkrCard 01/31/2014 TrustwaveEurope
Kalio, Inc. (D.M.insite) 03/14/2014 SecurityMetricsUS
Karbil Yazilim ve Bilisim Tek. Tic. Ltd. Sti (CordisNetwork)
10/03/2013 Biznet Information SystemsEurope
Kimbia, Inc. 08/29/2013 Compass IT ComplianceUS
Klik Technologies Corporation 01/14/2013 Information Exchange Inc.US
Kony Solutions, Inc. 05/16/2013 403 Labs, LLCUS
Korta Payments (Kortathjonustan hf) 03/14/2014 FortConsult A/SEurope
Kount, Inc. (Keynetics) 03/14/2014 TrustwaveUS
KPS Payment GmbH & Co. KG 09/12/2013 TUV SUD Management Service GmbHEurope
Krueger Associates, Inc. (National Fulfillment Services)
10/30/2013 SecurityMetricsUS
Kubra Data Transfer Limited 08/29/2013 TrustwaveCanada
Lateral Payment Solutions Ltd 11/01/2013 TrustwaveEurope
Layered Technologies, Inc. 03/05/2013 Coalfire Systems, Inc.US
LexisNexis VitalChek Network, Inc. 01/31/2014 Brightline CPAs & Associates, Inc.US
Link Processing Co., Ltd 05/24/2013 BSI Management Systems Japan K.K.Asia Pacific
Litle & Company, LLC 12/18/2013 Payment Software Company (PSC)US
LiveOps Inc. 10/22/2013 TrustwaveUS
LiveVox 01/14/2013 Verizon/CybertrustUS
Living Social (ONOSYS - Online Ordering System) - (O-Web Technologies Inc.)
01/23/2013 Secure State ConsultingUS
lnfinitium Solutions Sdn. Bhd. 05/03/2013 TrustwaveAsia Pacific
LTD Merchant Services, LLC 04/30/2013 VCAG LLCUS
Lufthansa AirPlus Servicekarten GmbH - Overall Acq Services, Issuing Processing and additional infrastructure
11/27/2013 Security Research & Consulting GmbHEurope
Friday, March 21, 2014 Page 29 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Lufthansa Revenue Services GmbH (LRS) 12/02/2013 Security Research & Consulting GmbHEurope
Lufthansa Systems AG (LSY) - (formerly Lufthansa Systems Infratec GmbH)
04/11/2013 usd AGEurope
Lyra Network (Brazil) 11/25/2013 Cipher InformaticaLatin Americ
Lyra Network (France) 07/12/2013 Security Research & Consulting GmbHEurope
M2 Payment Solutions (formerly M2Financial LTD) 02/25/2014 Information Exchange Inc.US
Maas Global Solutions Corporation (MGS) 02/10/2014 Information Exchange Inc.US
Madison Performance Group 07/29/2013 Grant ThorntonUS
Magensa, LLC (MagTek) 08/06/2013 Coalfire Systems, Inc.US
Magic-Wrighter, Inc. 07/01/2013 TrustwaveUS
Maintech 11/25/2013 IBM Internet Security Systems (ISS)US
Mako Networks Ltd. 04/16/2013 Verizon/CybertrustAsia Pacific
MarketLive, Inc. 11/14/2013 Online EnterprisesUS
Mashery, Inc. 08/21/2013 AT&T Consulting Solutions, Inc. (Verisign)US
MBS Textbook Exchange, Inc. - inSite 06/13/2013 TrustwaveUS
MBU d.o.o. 09/19/2013 TrustwaveEurope
McKesson Corporation (McKesson Technologies Inc, McKesson RelayHealth, RelayHealth, RelayAccount, McKesson RelayAccount, McKesson Patient Compass, Patient Compass)
07/08/2013 TrustwaveUS
Medoc Computers Ltd 03/06/2014 Sysnet Ltd.Europe
MegaPath Networks 02/05/2014 TrustwaveUS
Merchant e-Solutions, Inc. (MeS) 07/16/2013 Coalfire Systems, Inc.US
Merchant Link, LLC 03/04/2013 TrustwaveUS
Merchant One Inc. 07/31/2013 Information Exchange Inc.US
Merchant Partners (Innuity, Inc.) 11/04/2013 Information Exchange Inc.US
Merchant Warehouse (Capital Bankcard) 03/25/2013 TrustwaveUS
Friday, March 21, 2014 Page 30 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
MerchantPlus LLC 02/19/2014 TrustwaveUS
Merchants Bancard Network (Formerly IMAX Bancard Network, LLC)
01/03/2014 SecurityMetricsUS
Merchants Billing Services, Inc. 02/15/2014 Information Exchange Inc.US
Merchants Choice Payment Solutions (MCPS) 01/08/2014 K3DES LLCUS
Mercury Payment Systems, Inc. (MPS) 01/24/2013 Coalfire Systems, Inc.US
Meridian Enterprises Corporation 06/25/2013 ProtivitiUS
MeritCard Solutions 07/01/2013 ControlScanUS
Meritus Payment Solutions (TK Global Partners LLC)
01/24/2014 403 Labs, LLCUS
Merkle Response Management Group 01/05/2014 TrustwaveUS
Metavante Technologies Limited 12/06/2013 TrustwaveEurope
Micros Systems, Inc. 08/29/2013 TrustwaveUS
Microsoft Dynamics Online Payment Services 06/06/2013 TrustwaveUS
MilliKart Processing Center 02/07/2014 Radius Group LLCEurope
Mindbody Inc. 08/15/2013 Payment Software Company (PSC)US
Mint Wireless Limited 07/22/2013 Vectra CorporationAsia Pacific
Mi-Pay Limited 07/29/2013 Pen Test PartnersEurope
Mizuho Factors, Ltd Processing Business 08/09/2013 BSI Management Systems Japan K.K.Asia Pacific
Modern Payment Solutions Ltd. (formerly Assist Ltd.)
05/30/2013 Security Research & Consulting GmbHEurope
Moduslink 03/27/2013 TrustwaveUS
MoldMediaCard SRL 12/09/2013 TrustwaveEurope
Moneris Shared Cash Dispensing (SCD) and Payment Systems Infrastructure at the Royal Bank of Canada
07/12/2013 TrustwaveCanada
Moneris Solutions Corporation / Moneris Solutions, Inc.
07/19/2013 TrustwaveCanada
Friday, March 21, 2014 Page 31 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Monexa Services, Inc. (formerly IP Applications, Inc.)
07/30/2013 IPSCanada
Monext - Merchant Services (Payline, Payavenue, Tokenizer)
11/27/2013 XMCO PartnersEurope
Monext (Cards by Monext - Call Center) 08/13/2013 XMCO PartnersEurope
Monext (Cards by Monext) 09/27/2013 XMCO PartnersEurope
Money Movers Inc. 02/27/2014 Coalfire Systems, Inc.US
Moneybookers Ltd. (UK) (Skrill) 05/21/2013 SecurityMetricsEurope
Moneytree ATM LLC (Digital Network Solutions) 06/14/2013 Information Exchange Inc.US
Montrada GmbH 07/05/2013 usd AGEurope
Moore Wallace (R.R. Donnelley) - Canada 02/28/2013 Solutionary, Inc.Canada
Moore Wallace (R.R. Donnelley) - US 02/28/2013 Solutionary, Inc.US
Motionsoft 04/18/2013 TrustwaveUS
Motivational Fulfillment & Logistics Services (Motivational Marketing Inc.)
02/28/2014 Tevora Business SolutionsUS
mPAY24 GmbH 12/06/2013 Security Research & Consulting GmbHEurope
MPayMe Ltd. 06/28/2013 Nexusguard Consulting LimitedAsia Pacific
MPP Magyarorszag Zrt. 04/05/2013 Apersky Consulting LLCEurope
Mtrex / CartManager / Vision Bankcard, Inc. 03/14/2014 TrustwaveUS
Multicarta Ltd. 09/30/2013 Radius Group LLCEurope
Multifunctional Processing Company LLC 07/11/2013 FortConsult A/SEurope
Multisafepay (formerly Multipay BV) 02/10/2014 VOC-Consultancy BVEurope
MultiService Corporation 02/17/2014 TrustwaveUS
My Clear Reports 05/21/2013 Information Exchange Inc.US
My Payment Network 02/06/2013 RaveneyeUS
National Bankcard Services, Inc. 09/24/2013 RSM McGladrey, Inc.US
National Information Solutions Cooperative (NISC) 04/09/2013 TrustwaveUS
Friday, March 21, 2014 Page 32 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
National Systems Corporation (QuikOrder, Inc.) 07/28/2013 TrustwaveUS
Nayax Ltd. 06/30/2013 Comsec Consulting, Ltd.Europe
NBS Payment Solutions (Division of NBS Technologies, Inc.)
05/22/2013 Control Gap Inc.Canada
NCMIC Finance Corporation (NFC) 10/15/2013 SecurityMetricsUS
nCourt LLC 12/20/2013 SecurityMetricsUS
NCR - Command Center (formerly Radiant Systems)
12/31/2013 Coalfire Systems, Inc.US
NCR – Secure Pay Environment 03/30/2013 ControlCaseUS
NCR Aloha Takeout / NCR Aloha Ordering Online (formerly Radiant Systems - Aloha Takeout and Aloha Ordering Online)
12/15/2013 Coalfire Systems, Inc.US
NCR CPOnline (formerly Radiant Systems - CP Online)
12/15/2013 Coalfire Systems, Inc.US
Nelnet Business Solutions (QuickPay) 03/31/2013 Coalfire Systems, Inc.US
Net1 01/08/2014 TrustwaveSAMEA
NETbilling, Inc. 09/06/2013 SecurityMetricsUS
NetCentriX Inc (TransVerse Systems LLC) 07/26/2013 Information Exchange Inc.US
Netcommerce SAL 10/10/2013 EOH Mthombo (Pty) Ltd.SAMEA
NetMove Corporation 12/28/2013 International Certificate Authority of Mgt SystAsia Pacific
Netopia SRL 04/04/2013 Endava LTDEurope
Netrada North America (Fulfillment Technologies (Filltek))
10/18/2013 Secure State ConsultingUS
Nets Denmark A/S 09/09/2013 Foregenix LimitedEurope
Nets Estonia AS (previously Pankade Kaardikeskus AS)
01/14/2014 O-C GroupEurope
Nets Finland Oy (formerly Manison Maksujärjestelmät Oy)
06/14/2013 Sysnet Ltd.Europe
Nets Norway AS - Processor 05/14/2013 TrustwaveEurope
Friday, March 21, 2014 Page 33 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Nets Oy 02/15/2013 FortConsult A/S
Nets Oy ePayment Gateway and Acquisition Services (Nets Oy)
12/05/2013 FortConsult A/SEurope
Nets Sweden AB 07/12/2013 TrustwaveEurope
NetSpend Corporation (Skylight Financial Inc.) 09/13/2013 Coalfire Systems, Inc.US
NetSuite Inc. 01/13/2014 TrustwaveUS
Network International, LLC (NETWORK Ae) 12/12/2013 M. Kuppuswamy PSG & Co.SAMEA
Network Merchants, Inc. (NMI Gateway Services) 04/03/2013 TrustwaveUS
NeuLion, Inc. 05/15/2013 TrustwaveUS
New Vision Baltija UAB 08/14/2013 FortConsult A/SEurope
Newtek Merchant Solutions (Universal Processing Services of Wisconsin)
12/03/2013 SecurityMetricsUS
NIC Services, LLC 05/10/2013 TrustwaveUS
Nodus Technologies, Inc. 12/16/2013 igxglobal, Inc.
North American Bancard, Inc. (TransGlobal Payment Systems, Wholesale Processing Club)
05/20/2013 TrustwaveUS
Novopayment, B. V. / NovoPayment L.T.D (Miami, FL Data Center)
07/31/2013 XtrategiesUS
nTrust Corp. 02/18/2013 ControlCaseAsia Pacific
NTT DATA CORPORATION, Cards and Payments Services Division (BlueGate & OricoPayment)
06/05/2013 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, Cards and Payments Services Division (CAFIS System)
12/08/2013 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, Cards and Payments Services Division (Payment Collection Service Center for Gas Companies)
09/24/2013 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, First Financial Sector Cards and Payments Services Division
07/30/2013 BSI Management Systems Japan K.K.Asia Pacific
NYCE Payments Network LLC 06/17/2013 TrustwaveUS
Friday, March 21, 2014 Page 34 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Office24 Co., Ltd. 02/28/2013 International Certificate Authority of Mgt SystAsia Pacific
Official Payments Corporation (Tier Technologies, Inc.)
02/25/2014 TrustwaveUS
Ogone 02/14/2014 NTT Security Ltd.Europe
OK Processing Ltd 09/27/2013 InformzaschitaEurope
OMS Online, LLC 03/29/2013 ControlCaseUS
One Touch Direct, LLC 10/10/2013 Freed Maxick CPAsUS
Onelya, LLC 05/06/2013 Digital SecurityEurope
Online Tech, LLC 06/30/2013 UHY Advisors TX, LLCUS
Open Joint-Stock Company "Orient Express Bank" 12/04/2013 Jet InfosystemsEurope
Operadora de Tarjetas de Credito Nexus S.A. 08/14/2013 TrustwaveLatin Americ
Optimal Payments PLC (NetBx Technologies, NetBx Services, NBX Merchant Services, NetBanx Ltd)
06/11/2013 TrustwaveCanada
Oracle ATG Web Commerce Managed Cloud Service
08/01/2013 Coalfire Systems, Inc.US
Oracle BRM Cloud Service 11/25/2013 Coalfire Systems, Inc.US
Oracle Managed Cloud Services 08/01/2013 Coalfire Systems, Inc.US
Oracle on Demand Easy Pay 08/01/2013 Coalfire Systems, Inc.US
Oracle On Demand E-Billing 08/01/2013 Coalfire Systems, Inc.US
Oracle RightNow (Commercial PCI) 03/28/2013 Coalfire Systems, Inc.US
Oracle RightNow (Public Sector) 03/28/2013 Coalfire Systems, Inc.US
Orbitall Servicos e Processamento de Informacoes Comerciais Ltda
10/18/2013 CPqDLatin Americ
ORCS Web Inc. 05/24/2013 igxglobal, Inc.US
OrderMotion, Inc. 05/17/2013 TrustwaveUS
OrderTalk, Inc. 09/03/2013 A-Lign Security and Compliance ServicesUS
Friday, March 21, 2014 Page 35 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
OSP Group (formerly Redcats USA, Inc. – OneStopPlus.com)
11/19/2013 Crowe Horwath LLPUS
Pace Payment Systems (Century Bankcard Services)
03/15/2014 Information Exchange Inc.US
PacifiCard S.A. 02/27/2013 TrustwaveLatin Americ
Paciolan Inc. 12/13/2013 TrustwaveUS
Pago Merchant Solutions L.P. 09/30/2013 Sysnet Ltd.Europe
Palm Coast Data LLC 12/31/2013 K3DES LLCUS
PAMS Lunchroom LLC 12/20/2013 TrustwaveUS
Panasonic Avionics Corporation 04/25/2013 DirectDefenseUS
Paramount Acceptance (Federal Recovery Systems Inc.)
05/29/2013 SecurityMetricsUS
Parkeon Europe (Besancon Platform) - (Archipel) 05/02/2013 TrustwaveEurope
Parkmobile USA, Inc. 11/22/2013 Habif, Arogeti & Wynne, LLPUS
Passkey, Inc. 06/30/2013 AT&T Consulting Solutions, Inc. (Verisign)US
Passport Health Communications, Inc. 02/12/2014 TrustwaveUS
PatientPay 05/01/2013 SecurityMetricsUS
PAY.ON AG 07/08/2013 TUV SUD Management Service GmbHEurope
PayByPhone Technologies, Inc. 11/19/2013 RaveneyeCanada
PayChannel (G4S Technology Ltd) 12/12/2013 Payment Software Company (PSC)Europe
Paycorp Holdings Ltd. (ATM Solutions, Drawcard, EFTPOS)
10/31/2013 EOH Mthombo (Pty) Ltd.SAMEA
Paydesign (formerly Digital Check, Inc.) 12/28/2013 International Certificate Authority of Mgt SystAsia Pacific
Paydiant Inc. 12/31/2013 Payment Software Company (PSC)US
Payer Financial Services AB 04/15/2013 TrustwaveEurope
PayEx Holding AB (formerly PayEx Solutions AS (Payex IPSP))
10/14/2013 NTT Security Ltd.Europe
Payflex Systems USA, Inc. 06/17/2013 TrustwaveUS
Friday, March 21, 2014 Page 36 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
PayGate (Pty) Ltd 03/26/2013 Sysnet Ltd.SAMEA
Paygent Co., Ltd. 06/30/2013 International Certificate Authority of Mgt SystAsia Pacific
PayHub Inc. 08/05/2013 CompliancePoint, Inc.US
PayItEasy BVBA 11/22/2013 FortytwoEurope
PayJunction (Messiahic, Inc.) 04/04/2013 Payment Software Company (PSC)US
Paylane Sp. Z o.o. (formerly PayLane UK Ltd.) 02/01/2014 O-C GroupEurope
PayLeap LLC (Affinity Payments) 06/29/2013 Information Exchange Inc.US
PayLease, LLC 03/03/2014 SecurityMetricsUS
PayLife Bank GmbH (Acquiring and Maestro Issuing Services)
02/24/2014 TUV SUD Management Service GmbHEurope
PAYM8 (PTY) Ltd 10/15/2013 TrustwaveSAMEA
Paymax SA 11/08/2013 SC2LabsEurope
Payment Data Systems Inc. 05/15/2013 Information Exchange Inc.US
Payment Exchange Ltd. (Payment Exchange International Ltd.) (PEX)
12/20/2013 Sysnet Ltd.SAMEA
Payment Logistics Limited 02/14/2014 K3DES LLCUS
Payment Processing, Inc. (PPI) 04/30/2013 TrustwaveUS
Payment Services Interactive Gateway (PSIGate) 10/01/2013 TrustwaveCanada
Payment World 11/30/2013 Coalfire Systems, Inc.US
PaymentSpring, Inc. 03/04/2013 Continuum WorldwideUS
Paymentus Corporation 10/28/2013 K3DES LLCCanada
Paymetric, Inc. 08/07/2013 TrustwaveUS
Paynova AB 06/14/2013 NTT Security Ltd.Europe
Payone GmbH & Co. KG 12/02/2013 TUV SUD Management Service GmbHEurope
PayPal, Inc. 12/03/2013 K3DES LLCUS
Paypoint.net (Metacharge Ltd) 05/15/2013 Nettitude Ltd.Europe
PaySimple 08/20/2013 Coalfire Systems, Inc.US
Friday, March 21, 2014 Page 37 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
PaySpan, Inc. (formerly mPay Gateway) 12/12/2013 Brightline CPAs & Associates, Inc.US
Paystation Limited 05/28/2013 Confide Ltd.Asia Pacific
Paythru Ltd. 03/14/2014 O-C GroupEurope
PayTrace, Inc. 09/25/2013 Information Exchange Inc.US
PayU Commercial Offices (PayU Russia, PayU Turkey, PayU Ukraine, and PayU Hungary)
01/24/2014 Sysnet Ltd.Europe
PayU Romania (formerly GeCAD ePayment International SA)
05/15/2013 Sysnet Ltd.Europe
Payvision B.V. 06/03/2013 TrustwaveEurope
Paywizard PLC 10/08/2013 AmbersailEurope
Payzone Ireland Ltd. 09/12/2013 NTT Security Ltd.Europe
Payzone Nordic AB 07/07/2013 Cybercom GroupEurope
PBD Worldwide Fulfillment Services 07/15/2013 TrustwaveUS
PCIPay, LLC 04/05/2013 Coalfire Systems, Inc.US
Pensio A/S 09/02/2013 FortConsult A/SEurope
People Tech Latin S.A.A. 12/05/2013 IQ Information QualityLatin Americ
PetaFuel GmbH 12/19/2013 usd AGEurope
Petersburg Social Commercial Bank, OJSC (PSCB)
02/13/2013 Deiteriy Company Ltd.
Petro-Canada (Suncor Energy, Inc.) 05/31/2013 Verizon/CybertrustCanada
Phoenix Managed Networks LLC (PMN) 09/13/2013 igxglobal, Inc.US
Phoenix Nap LLC 01/31/2014 Coalfire Systems, Inc.US
Phreesia 02/26/2013 TrustwaveUS
Pil.dk/Quickpay.dk (Pil-Professionelle Internetlosninger Aps.)
07/19/2013 FortConsult A/SEurope
Pitney Bowes 02/17/2014 IBM Internet Security Systems (ISS)US
Pivotal Payments 02/28/2014 SecurityMetricsCanada
Friday, March 21, 2014 Page 38 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Planet Payment, Inc. (Planet Group, Inc.) 03/03/2014 TrustwaveUS
Plastiq Inc. (Plastiq Canada Inc.) (formerly 4ward Thinking)
05/17/2013 CompliancePoint, Inc.US
Plug & Pay Technologies, LLC 10/01/2013 SecurityMetricsUS
Pluscard GmbH 06/15/2013 usd AGEurope
PMTsolutions AG 11/26/2013 TUV SUD Management Service GmbHEurope
Point Transaction Systems (formerly Paybox) 10/09/2013 Verizon/CybertrustEurope
Point Transaction Systems a islandi ehf. 07/09/2013 TrustwaveEurope
Portmone.com 11/25/2013 Security Research & Consulting GmbHEurope
POS Portal 12/26/2013 Coalfire Systems, Inc.US
Posatel Inc. 08/20/2013 UbitrakCanada
POST Integrations, Inc. 04/03/2013 Verizon/CybertrustUS
PostFinance AG (formerly Swiss Post PostFinance)
02/14/2014 NTT Security Ltd.Europe
Preferred Health Technology 08/22/2013 TrustwaveUS
PrePay Technologies (Prepay Solutions) 06/28/2013 Foregenix LimitedEurope
Primoris Services, LLC 07/17/2013 SecurityMetricsUS
Priority Fulfillment Services, Inc. (PFSWeb, Inc.) 03/19/2013 TrustwaveUS
Priority Payment Systems 05/20/2013 Coalfire Systems, Inc.US
Procesos de Medios de Pagos S.A 04/28/2013 1st Secure IT, LLCLatin Americ
Processing.com (Cardconcepts Europe Ltd.) 10/28/2013 SecurityMetricsUS
Promocion y Operacion S.A de C.V. (Prosa) 12/12/2013 403 Labs, LLCLatin Americ
ProPay USA, Inc 05/30/2013 Cadence AssuranceUS
Propco Marketing (Propp Corp) 04/08/2013 NeohapsisUS
Provus Bilisim Hizmetleri A.S. 02/06/2014 Biznet Information SystemsEurope
Provus Service Provider S.A. 05/03/2013 TrustwaveEurope
PSC Ukrainian Financial Network (UFN) 10/01/2013 Sysnet Ltd.Europe
Friday, March 21, 2014 Page 39 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
PSCU Financial Services, Inc. 02/28/2014 Tevora Business SolutionsUS
PSP Polska Sp. Z.o.o 03/21/2013 O-C GroupEurope
PT Multi Adiprakarasa Manunggal ("Kartuku"), Jakarta, Indonesia
10/10/2013 ControlCaseAsia Pacific
PT Pay S.A. 07/17/2013 TrustwaveEurope
PULSE Network (Pulse EFT Association) 06/01/2013 K3DES LLCUS
Qgiv, Inc. 07/16/2013 SecurityMetricsUS
QS/1 Data Systems (JM Smith Corporation) 06/28/2013 TrustwaveUS
QTS Realty Trust, Inc. - QVI Services (formerly Quality Technology Services LLC (QTS) - QVI Services)
10/04/2013 ProtivitiUS
QTS Realty Trust, Inc. (formerly Quality Technology Services LLC (QTS))
04/30/2013 ProtivitiUS
Quantum Services LLC (Quantum Gateway) 10/18/2013 RaveneyeUS
Quipu GmbH 06/25/2013 TUV SUD Management Service GmbHEurope
Rackspace 07/29/2013 TrustwaveUS
Radiant Systems - CP Gateway 10/31/2013 Coalfire Systems, Inc.US
Raiffeisenverband Südtirol Gen. 02/05/2013 KIMA Projects & ServicesEurope
Rapid Investments 10/01/2013 ControlCaseUS
ReadyTouch Network Services (RTNS) 03/22/2013 KalioTek, Inc.US
Realex Payments (Pay and Shop Ltd) 11/05/2013 RitsEurope
RealPage 06/27/2013 TrustwaveUS
Recurly, Inc. 01/17/2013 TrustwaveUS
Redbanc S.A. 08/16/2013 TrustwaveLatin Americ
RedPrairie (formerly Escalate Retail Incorporated) 01/09/2013 TrustwaveUS
Redsýs Servicios de Procesamiento S.L. 11/12/2013 S21sec Gestion, S.A.Europe
Reiknistofa Bankanna 02/24/2013 TrustwaveEurope
Friday, March 21, 2014 Page 40 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Reliant Web Hosting Services (Tenzing Managed IT Services)
07/25/2013 Control Gap Inc.Canada
REMISE Corporation 12/31/2013 International Certificate Authority of Mgt SystAsia Pacific
Retail Decisions UK 06/03/2013 TrustwaveEurope
Retail Decisions, Inc. (US) 09/26/2013 TrustwaveUS
RetailPoint, LLC 09/19/2013 TrustwaveUS
Retalix Global Payments (MTXEPS) 01/14/2014 TrustwaveUS
Retiarius, GMBH 11/29/2013 Kyte Consultants, Ltd.Europe
Rev Worldwide, Inc. (formerly MPOWER Labs (Mango Financial, Inc.))
10/24/2013 Certify Audit Services, Inc.US
Revelex Corporation 09/30/2013 TrustwaveUS
Revention, Inc. 12/23/2013 A-Lign Security and Compliance ServicesUS
RevTrak, Inc. 06/28/2013 Coalfire Systems, Inc.US
Rewards Network, Inc. 06/28/2013 SuneraUS
RewardsNOW! Inc. 09/24/2013 Online EnterprisesUS
RideCharge Inc. (Taxi Magic) 08/16/2013 ControlCaseUS
Roam Data, Inc. 10/04/2013 igxglobal, Inc.US
RocketGate, LLC 10/15/2013 403 Labs, LLCUS
Romcard S.A. 09/12/2013 TrustwaveEurope
RS2 Smart Processing Limited (BankWorks Service Partners (BW-SP)
04/16/2013 O-C GroupEurope
RSA - The Security Division of EMC 10/10/2013 Verizon/CybertrustUS
RSI International Systems Inc. 01/10/2014 Coalfire Systems, Inc.Canada
RSM 2000 Limited 02/24/2014 TrustwaveEurope
RT Lawrence Corporation 04/11/2013 TrustwaveUS
Rucard Ltd. 07/12/2013 TrustwaveEurope
Russian Standard Bank 08/06/2013 TrustwaveEurope
Friday, March 21, 2014 Page 41 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Sabre Hospitality Solutions (SynXis) 01/30/2013 FortrexUS
Sabre Travel Network and Sabre Airline Solutions 06/28/2013 FishNet SecurityUS
SafeCharge International Group Ltd. 12/04/2013 TrustwaveEurope
Sage Pay 06/10/2013 TrustwaveEurope
Sage Payment Solutions 07/23/2013 Verizon/CybertrustUS
SaleServiceSolutions (LTD) 12/16/2013 Security Research & Consulting GmbHEurope
Sallie Mae Corporation 03/27/2013 Specialized Security Services, Inc.US
Salsa Labs, Inc. 08/23/2013 ControlCase
Samport Payment Services AB 08/14/2013 TrustwaveEurope
SC Data Center 02/22/2013 Coalfire Systems, Inc.US
SC Smart PayNetwork SA (member of Euronet Worldwide Inc. Group)
01/27/2014 Encode SAEurope
Scannet A/S 12/10/2013 FortConsult A/SEurope
ScholarChip Card Company, LLC 07/25/2013 SecurityMetricsUS
Secure CyberGateway Services, LLC 06/28/2013 SecurityMetricsUS
Secure Payments LLC (iSecure Payments) 07/11/2013 Aeris SecureUS
SecureKey Technologies 06/12/2013 The Herjavec Group Inc.Canada
SecureNet (Securenet Payment Systems) 05/20/2013 RSM McGladrey, Inc.US
SecurePay Pty Ltd 12/31/2013 Vectra CorporationAsia Pacific
SecureTrading Ltd. 06/13/2013 TrustwaveEurope
SegPay Inc. (SegPay Ltd.) 08/06/2013 Payment Software Company (PSC)US
Select Bankcard LLC 07/31/2013 K3DES LLCUS
Sentry Payment Service, Ltd. 02/07/2013 SecurityMetricsCanada
Seroph Holding BV (AlgoCharge) 08/28/2013 GRSee ConsultingEurope
Servebase Ltd 12/19/2013 Foregenix LimitedEurope
Servicios Electronicos Globales, S.A. de C.V.(eGlobal)
10/12/2013 TrustwaveLatin Americ
Friday, March 21, 2014 Page 42 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Servodata GmbH 12/13/2013 usd AGEurope
Setcom 10/25/2013 SecuriCentrixSAMEA
Setrafi (CentralPay / NordPay) 05/24/2013 ElittEurope
Shazam Inc. (ITS Inc.) 04/30/2013 TrustwaveUS
SHC Direct, LLC 07/30/2013 TrustwaveUS
Shift4 Corporation 05/31/2013 Verizon/CybertrustUS
Shopify, Inc. (Shopify Payments (Canada Inc. & Shopify Payments (USA) Inc.))
08/26/2013 IOActive, Inc.Canada
SIA Central Europe cPlc (formerly GIRO Bankcard cPlc)
05/04/2013 Apersky Consulting LLCEurope
SIA S.p.A. (formerly SIA-SSB) 08/02/2013 Verizon/CybertrustEurope
SIA Transact Pro (Payment Gateway & IPSP Services)
11/15/2013 FortConsult A/SEurope
SignaPay LTD 06/14/2013 ControlScanUS
Signature Card Services (CKC Holdings, Inc.) 04/26/2013 SecurityMetricsUS
Silverlake Infrastructure & Logistics Sdn. Bhd. 12/26/2013 Vectra CorporationAsia Pacific
Sitel Operating Corporation - Sitel Call Center Services (US, EMEA, LATAM/South America and APAC)
11/25/2013 TrustwaveUS
SIX Payment Services AG (formerly SIX Card Solutions AG)
04/08/2013 TUV SUD Management Service GmbHEurope
SIX Payment Services Luxembourg SA (Six Card Solutions, 3C International SA, 3C Communications International SA)
11/20/2013 NTT Security Ltd.Europe
Skybridge America's, Inc. (Skybridge Marketing Group) (formerly Argenbright Inc.)
11/20/2013 TrustwaveCanada
Slim CD, Inc. 10/21/2013 Enterprise Risk ManagementUS
Smart Hub Inc. 12/26/2013 ControlCaseAsia Pacific
Smartcardlink (SCL) 06/28/2013 InformzaschitaEurope
SmartEtailing Inc. 09/13/2013 Coalfire Systems, Inc.US
Friday, March 21, 2014 Page 43 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
SmartLink Network Inc. 11/15/2013 ASR.Co., LTD
Snapfinger Incorporated (formerly Kudzu Interactive)
10/28/2013 ControlCaseUS
Sociedade Interbancária de Serviços, S.A. (SIBS) 06/11/2013 FortConsult A/SEurope
Softvoyage Inc. 10/21/2013 UbitrakCanada
Sophia Research Institute, Ltd. 09/14/2013 International Certificate Authority of Mgt SystAsia Pacific
Sors Financial & Insurance Services, LLC (Approval Code)
05/13/2013 igxglobal, Inc.US
South African Bank Services Company Limited - Bankserv
12/18/2013 TrustwaveSAMEA
Spacenet, Inc. 09/17/2013 TrustwaveUS
Specialized Technical Services (STS Payment Network (STS PN))
07/15/2013 TrustwaveSAMEA
Speed Commerce, Inc. (formerly SpeedFC, Inc.) 11/21/2013 Payment Software Company (PSC)US
Spendvision Holdings Ltd (UK) 04/17/2013 IntegralisEurope
Square, Inc. 05/01/2013 Coalfire Systems, Inc.US
Stafford Associates Computer Specialists, Inc. 10/11/2013 CrimsonSecurityUS
Stamps.com Inc. 04/15/2013 TrustwaveUS
Starcite, Inc. (Active Network) 02/15/2013 RSM McGladrey, Inc.US
Sterling Payment Technologies, LLC 09/19/2013 TrustwaveUS
STI Processing 09/25/2013 K3DES LLCLatin Americ
Strategic Fulfillment Group/Annie's (SFG/Annie's) 09/26/2013 TrustwaveUS
Strategic Payments Services (SPS) Pty Ltd 04/23/2013 Stratsec.net RTY LTDAsia Pacific
StreamPay SIA 01/24/2014 Kyte Consultants, Ltd.Europe
Stripe, Inc. 03/14/2014 IOActive, Inc.US
Sumitomo Mitsui Card Company, Ltd. 09/27/2013 International Certificate Authority of Mgt SystAsia Pacific
Sunburst Innovations, Inc. (1to1Card) 12/27/2012 Professional Computer Center, DBA ValcomUS
Friday, March 21, 2014 Page 44 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
SunGard Availability Services 04/16/2013 FortrexUS
SunGard AvantGard, Payment Services Division 04/19/2013 K3DES LLCUS
SunGard Public Sector 08/22/2013 SecurityMetricsUS
Superior Financial Systems, Inc. 03/07/2014 TrustwaveUS
Support.com, Inc. 07/15/2013 Accretive Solutions Operating Corp.US
Swift Prepaid Solutions, Inc. 03/29/2013 Secure State ConsultingUS
Swipely 05/15/2013 Compass IT ComplianceUS
Swish Limited 02/28/2014 SecuriCentrixEurope
Swiss Post Solutions GmbH 10/14/2013 Security Research & Consulting GmbHEurope
Switchfly Inc. (formerly ezRez Software, Inc.) 01/31/2014 Payment Software Company (PSC)US
Symcor, Inc. (Canadian Retail Lockbox Processing Environment)
08/08/2013 IPSCanada
Synapse Corporation 11/12/2013 403 Labs, LLCUS
Synapse Group, Inc. 08/02/2013 NeohapsisUS
Syspay 12/06/2013 TrustwaveEurope
T2 Systems, Inc. 11/19/2013 TrustwaveUS
TalentBeat Inc. (Aurus Inc.) (Talentbeat Systems Pvt. Ltd.)
11/30/2013 K3DES LLCUS
TAS Link LLC 05/31/2013 BMS Consulting LLCEurope
TD Merchant Services (The Toronto - Dominion Bank)
03/31/2013 TELUS Security SolutionsCanada
Tecnicard, Inc. (Cardmarte, Inc.) 05/15/2013 1st Secure IT, LLCUS
Tecs Telecommunication & E-commerce Solutions GmbH
06/10/2013 TUV SUD Management Service GmbHEurope
TelecityGroup France 12/06/2013 TrustwaveEurope
Teleflora, LLC 10/29/2013 TrustwaveUS
Telefonica Soluciones de Informatica y Comunicaciones, S.A., Sociedad Unipersonal
06/12/2013 Internet Security Auditors, S.L.Europe
Friday, March 21, 2014 Page 45 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Teleformix 09/25/2013 TrustwaveUS
Telekenex IXC 09/27/2013 TrustwaveUS
Teleperformance Brazil 03/26/2013 SecurityMetricsLatin Americ
Teleperformance USA (TPUSA) 10/11/2013 AT&T Consulting Solutions, Inc. (Verisign)US
Teranet, Inc. 06/13/2013 TrustwaveCanada
Terremark North America, Inc. 12/24/2012 Brightline CPAs & Associates, Inc.US
Tessitura Networks, Inc. 06/28/2013 TrustwaveUS
The CBORD Group, Inc. 02/11/2014 TrustwaveUS
The MasterCard Clearing House of Japan (MCCJ) 12/11/2013 BSI Management Systems Japan K.K.Asia Pacific
The Members Group 01/29/2013 RSM McGladrey, Inc.US
The Shared Electronic Banking Services Company (K.S.C.C) - KNET
08/20/2013 ControlCaseSAMEA
The Shubert Organization (Shubert Ticketing) 02/15/2013 TrustwaveUS
Thisf Infomatica Ltda (Cobre Bem Tecnologia) 08/30/2013 Modulo SecurityLatin Americ
Threshold Financial Technologies Inc. 06/18/2013 Control Gap Inc.Canada
Ticket Software, LLC (TicketNetwork) 01/08/2014 TrustwaveUS
Ticketmaster, LLC and Ticketmaster Canada, Ltd 12/13/2013 AT&T Consulting Solutions, Inc. (Verisign)US
Tickets.com - ProVenue Elite 12/06/2013 TrustwaveUS
Tillster Support Services (Formerly EMN8) 11/25/2013 Tevora Business Solutions
Time Customer Service, Inc. 07/11/2013 NeohapsisUS
Time Warner Publishing BV (TW4 Fulfilment Services)
08/10/2013 NTT Security Ltd.Europe
Tivit Terceirizacao de Processos, Servicos e Tecnologia S.A. (Cielo Environment)
11/01/2013 Cipher InformaticaLatin Americ
Tix, Inc. 08/23/2013 Compass IT ComplianceUS
TK Keith Company (Primax Payment Systems) 07/05/2013 Verizon/CybertrustUS
Friday, March 21, 2014 Page 46 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
TNS Smart Network Inc. (NRT Technologies Inc., NRT Technology Corp., TNS Smart Network USA Inc.)
08/07/2013 TrustwaveCanada
TokenEX 10/14/2013 TrustwaveUS
Tokheim Belgium NV 11/20/2013 Sysnet Ltd.Europe
Tomax 06/21/2013 Coalfire Systems, Inc.US
Total Administrative Services Corporation (TASC) 12/06/2013 Coalfire Systems, Inc.US
Total Merchant Services 03/02/2014 Information Exchange Inc.US
Total Web Solutions Limited 10/10/2013 2-sec Ltd.Europe
TouchNet Information Systems, Inc. 04/01/2013 TrustwaveUS
Towarzystwo Finansowe Skok S.A. (TFSKOK) 07/29/2013 Comsec Consulting, Ltd.Europe
Transact24 Limited 01/15/2014 Evolution LTDAsia Pacific
Transaction Network Services (TNS) - Acquiring and Issuing
09/03/2013 TrustwaveEurope
Transaction Network Services (TNS) - TNSPay CNP Gateway
06/03/2013 TrustwaveEurope
Transaction Network Services (TNS) – TNSPay Direct (AJB)
09/03/2013 TrustwaveUS
Transaction Network Services (TNS) - Transpoll and TNSPay Retail Gateway
09/03/2013 TrustwaveEurope
Transaction Network Services (TNSI) 06/06/2013 TrustwaveUS
Transaction Processing Partners 08/25/2013 Information Exchange Inc.US
Transaction Services (TRXServices) 08/31/2013 Coalfire Systems, Inc.US
Transactium Limited 12/02/2013 TrustwaveEurope
Transbank S.A. 11/04/2013 TrustwaveLatin Americ
TransCertain 09/06/2013 Coalfire Systems, Inc.US
Transcom North America/Asia Inc. 05/02/2013 Coalfire Systems, Inc.US
TransFirst - TransAction Central 06/11/2013 TrustwaveUS
Friday, March 21, 2014 Page 47 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Transnational Bankcard LLC 10/31/2013 Professional Computer Center, DBA ValcomUS
TransPerfect Translations International Inc. (Translations.com)
09/20/2013 403 Labs, LLCUS
TransUnion Interactive, Inc. 11/30/2013 SecurityMetricsUS
Travelex Outsourcing Pty Ltd. 11/12/2013 TrustwaveAsia Pacific
Trevica S.A. 01/14/2014 TrustwaveEurope
Tri Source Solutions (formerly Nobel Electronic Transfer, LLC)
09/30/2013 Coalfire Systems, Inc.US
Tridata, Inc. - Datalink Bancard Services 02/28/2013 TrustwaveUS
Trilegiant 12/27/2013 TrustwaveUS
Triplefin 10/28/2013 TrustwaveUS
Tropical MBC (formerly Tropical Productions) 10/28/2013 Information Exchange Inc.US
Trust One Payment Services (ChargePay, Charge Payment LLC)
09/03/2013 TrustwaveUS
TrustCommerce (TCSP) 05/15/2013 403 Labs, LLCUS
Trustpay Global 09/02/2013 TrustwaveEurope
TS3 Services 03/15/2014 Foregenix LimitedEurope
TSYS (Issuing Processing) 01/14/2014 TrustwaveUS
TSYS Acquiring Solutions 04/15/2013 TrustwaveUS
TSYS Golden (TSYS iSolutions, TSYS Procard) 01/14/2014 Coalfire Systems, Inc.US
TSYS International Core 12/06/2013 TrustwaveEurope
TSYS Loyalty (IM & TLP Platform) 06/25/2013 TrustwaveUS
TSYS Managed Service - Myersville (Merlin Solutions)
04/11/2013 TrustwaveUS
TSYS Managed Services - Issuing 12/13/2013 TrustwaveUS
TSYS Managed Services EMEA Ltd. 11/08/2013 TrustwaveEurope
TSYS Merchant Services, LLC - Atlanta (formerly TermNet Merchant Services)
08/29/2013 TrustwaveUS
Friday, March 21, 2014 Page 48 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
TSYS Merchant Solutions 01/02/2014 TrustwaveUS
TSYS Output Services / TSYS DDS 02/11/2014 TrustwaveUS
TSYS Prepaid, Inc. 07/01/2013 TrustwaveUS
TSYS Prime Platforms (TSYS TS Prime EU, TSYS Prime 3, TSYS TS Prime Latin America)
11/06/2013 TrustwaveUS
Tutuka Software (Pty) Ltd. 12/17/2013 TrustwaveSAMEA
Tyler Technologies, Inc. 11/22/2013 IBM Internet Security Systems (ISS)US
U.S. Payments, LLC (Paysite) 12/13/2013 403 Labs, LLCUS
Ubiquity Global Services, Inc. (US, LAC, AP) 05/17/2013 ControlCaseUS
UBS Card Center AG 08/16/2013 NCC GroupEurope
UC Card Co., Ltd. 11/08/2013 BSI Management Systems Japan K.K.Asia Pacific
Ukrainian Processing Center (UPC) 03/07/2013 Security Research & Consulting GmbHEurope
UMS Banking (CA) 04/23/2013 SecurityMetricsUS
Unified Payment Services Ltd. (ValuCard Nigeria Ltd.)
01/21/2014 TrustwaveSAMEA
United Bank Card (Harbortouch) 11/08/2013 Information Exchange Inc.US
United Card Service 05/14/2013 Jet InfosystemsEurope
United Merchant Services, Inc. (UMS) 07/29/2013 TrustwaveUS
United Payment Services 12/19/2013 Accudata Systems, Inc.US
Universal Gateway Solutions (UGSPay Ltd) 03/11/2014 Security Research & Consulting GmbHEurope
Universal Money Centers Inc. 10/25/2013 Information Exchange Inc.US
Universal Payment Gateway (UPG) 10/25/2013 SecuriCentrixEurope
UPAID Sp. Z o.o. 07/19/2013 SC2LabsEurope
US Alliance Group, Inc. 01/04/2013 SecurityMetricsUS
US Bank E-Payment / E-Disbursement Services 01/09/2014 TrustwaveUS
USA ePay, a Gorcorp Company 02/25/2013 TrustwaveUS
USA Technologies, Inc. (Malvern Pennsylvania) 03/13/2014 TrustwaveUS
Friday, March 21, 2014 Page 49 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Value Pay Services LLC, an IPC Company 11/11/2013 IBM Internet Security Systems (ISS)US
Value Payment Systems 12/23/2013 A-Lign Security and Compliance ServicesUS
Vanco Services, LLC 12/11/2013 SecurityMetricsUS
Vantiv – National Processing Company (NPC) 11/19/2013 TrustwaveUS
Vantiv - Skipjack Financial Services, Inc. 01/10/2014 TrustwaveUS
Vantiv (f.k.a. TNB) Credit Card Services 02/17/2014 TrustwaveUS
Vantiv (Fifth Third Bank Processing Solutions - Acquiring Systems)
06/17/2013 TrustwaveUS
Vantiv (Fifth Third Bank Processing Solutions - Issuing and Switch Providing Systems)
06/17/2013 TrustwaveUS
Vantiv Card Management 08/13/2013 TrustwaveUS
Vantiv Prepaid Systems 06/17/2013 TrustwaveUS
Vegas.com, LLC 07/02/2013 TrustwaveUS
Venda, Ltd. 05/13/2013 SecurityMetricsEurope
Vendini, Inc. 07/12/2013 SecurityMetricsUS
VenTek International (Caracal Enterprises LCC) 12/06/2013 Coalfire Systems, Inc.US
Verifi, Inc. 07/11/2013 TrustwaveUS
VeriFone - VeriSheild Protect 07/18/2013 SecurityMetricsUS
VeriFone PAYware Connect 07/25/2013 Foregenix LimitedUS
Verifone Services UK & Ireland Ltd (VeriFone UK and Ireland, Point Transaction System (AB (Sweden), OY (Finland), A/S (Norway), AS (Denmark), SIA (Baltics))
11/06/2013 Foregenix LimitedEurope
Verifone Transportation Systems, Inc. (Taxitronic) 05/13/2013 FortrexUS
VeriFone UK 05/18/2013 TrustwaveEurope
Verizon Computing as a Service 01/18/2013 TrustwaveUS
Verotel Merchant Services BV 12/19/2013 VOC-Consultancy BVEurope
Vesta Corporation 06/30/2013 Online EnterprisesUS
Friday, March 21, 2014 Page 50 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Vindicia Inc. 09/16/2013 Payment Software Company (PSC)US
Virtual Card Services (Pty.) Ltd. 01/21/2013 SecuriCentrixSAMEA
Virtual Piggy, Inc. 02/12/2014 Coalfire Systems, Inc.US
VirtualXS - (Virtual Access Internet B.V.) 03/14/2014 NTT Security Ltd.Europe
Vision2Systems, LLC 09/30/2013 Coalfire Systems, Inc.US
VisionOne, Inc. 09/20/2013 IBM Internet Security Systems (ISS)US
VOB-ZVD Bank fur Zahlungsverkehrsdienstleistungen GmbH
06/13/2013 Security Research & Consulting GmbHEurope
VOB-ZVD Processing GmbH - POS Payment Processing Area (formerly BCB Processing)
09/27/2013 Security Research & Consulting GmbHEurope
VocaLink Ltd. (VocaLink ATM Systems) 11/15/2013 Verizon/CybertrustEurope
Vodat International Ltd. 05/03/2013 TrustwaveEurope
Voice Commerce Ltd. (Trading as Cashflows) 01/15/2014 Verizon/CybertrustEurope
Voice Data Solutions, Inc. 10/09/2013 SecurityMetricsUS
Volusion, Inc. 03/01/2014 Payment Software Company (PSC)US
VOXDATA Solutions Inc. 05/06/2013 SPIGuard Security Solutions, Inc.Canada
Voxeo Corporation (Aspect Software, Inc.) 12/13/2013 SuneraUS
VXI Global Solutions, Inc. 02/19/2014 TrustwaveUS
Wageworks 12/15/2013 RSM McGladrey, Inc.US
Walpay Ltd. 07/24/2013 Comsec Consulting, Ltd.Europe
Wannafind A/S (Zitcom A/S) 05/15/2013 FortConsult A/SEurope
Washington Metropolitan Area Transit Authority (WMATA)
02/14/2013 ControlCaseUS
Wave Crest Holdings Limited (GTECH) 12/12/2013 TrustwaveSAMEA
WEBINC GmbH & Co KG 07/17/2013 usd AGEurope
Webpay 12/11/2013 Security Research & Consulting GmbHEurope
Webpay, Inc. (Japan) 07/31/2013 International Certificate Authority of Mgt SystAsia Pacific
Friday, March 21, 2014 Page 51 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Webteh d.o.o. 09/13/2013 TrustwaveEurope
West Direct Response 04/30/2013 TrustwaveUS
Western Union Speedpay 08/29/2013 TrustwaveUS
Wincor Nixdorf Czech Republic 11/20/2013 TrustwaveEurope
Wipro IT Business 10/22/2013 SISA Information Security Pvt. Ltd.SAMEA
Wirecard Central Eastern Europe GmbH (formerly QENTA)
02/14/2014 Security Research & Consulting GmbHEurope
Wirecard Processing FZ LLC (formerly ProCard Services FZ LLC)
09/11/2013 TrustwaveSAMEA
Wirecard Technologies GmbH 01/10/2014 Security Research & Consulting GmbHEurope
Wirecard UK and Ireland Ltd. 12/03/2013 TrustwaveUS
Workflow One LLC 12/04/2013 Brightline CPAs & Associates, Inc.US
WorldNet TPS 05/15/2013 Sysnet Ltd.Europe
WorldPay (UK) Limited (Streamline) 07/18/2013 Sysnet Ltd.Europe
WorldPay (UK), Business Gateway (Formerly WorldPay), Corporate Gateway (Formerly BIBIT)
07/12/2013 Sysnet Ltd.Europe
WorldPay US, Inc. (formerly RBS WorldPay (US)) 05/14/2013 Verizon/CybertrustUS
Wright Express (WEX Inc.) 12/21/2012 Coalfire Systems, Inc.US
Wyndham Hotels & Resorts, LLC 12/31/2012 Verizon/CybertrustUS
Xerox Payment Solutions 07/19/2013 Experis Finance US LLCUS
XTEC, Inc. 07/31/2013 Information Exchange Inc.US
Yahoo! - smallbusiness.yahoo.com 04/30/2013 TrustwaveUS
Yalamanchili International Pte Limited 03/18/2013 SISA Information Security Pvt. Ltd.Asia Pacific
Yalamanchili Software Exports Pvt Ltd. 03/18/2013 SISA Information Security Pvt. Ltd.SAMEA
Yamaguchi Data Processing Service 02/08/2013 BSI Management Systems Japan K.K.Asia Pacific
YapStone, Inc. (RentPayment) 04/09/2013 Brightline CPAs & Associates, Inc.US
YESpay International Ltd. 08/07/2013 FortConsult A/SEurope
Friday, March 21, 2014 Page 52 of 53
The MasterCard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
Yodlee, Inc. 12/09/2013 Online EnterprisesUS
ZEUS Co., Ltd. 08/26/2013 ASR.Co., LTDAsia Pacific
ZippyYum LLC 05/21/2013 Intersec WorldwideUS
ZirMed, Inc. 04/15/2013 403 Labs, LLCUS
Zoola (formerly Rainbow Rewards) 12/30/2013 Coalfire Systems, Inc.US
Zooz (Tactus Mobile Limited) 03/22/2013 Comsec Consulting, Ltd.SAMEA
Zuora, Inc. 09/16/2013 Coalfire Systems, Inc.US
Friday, March 21, 2014 Page 53 of 53