Tours & Travels

Abundance of Data

Tourism industry is one of the most data intensive industries, where information about customer details and payment details are being exchanged. With a wide network of merchants and portals constantly constantly engaged in this manner, data security becomes a critical component. Lack of compliance to PCI DSS in Tourism industry can leave the data vulnerable to theft, hacking and fraud.

Meeting Standards

IATA requires its registered agents to comply with the Payment Card Industry Data Security Standards. Compliance with the PCI DSS in the form of an Attestation of Compliance (AOC) establishes security, protection and peace of mind for the agents and customers alike. 

How Can Panacea Help?

We empower members of the Tourism industry in acquiring the AOC through completing the PCI Self-Assessment Questionnaire (SAQ). Each vendor in the Tourism industry has a different environment for accepting and processing customer payment data. In order to ensure compliance, PCI has introduced different SAQs for different environments.

In response to this, Panacea InfoSec help IATA agents correctly identify the SAQ applicable to their environment. Next, we help to assess the agent’s current technical maturity and guide them through achieving their Attestation of Compliance (AOC). Panacea InfoSec ensures that through PCI DSS compliance, Tourism industry customers  remain secure and business continues to grow.