Guidewire Achieves Payment Card Industry Data Security Standard (PCI-DSS) Compliance and is Named a Visa Third-Party Agent

Guidewire Achieves Payment Card Industry Data Security Standard (PCI-DSS) Compliance and is Named a Visa Third-Party Agent

PCI DSS Compliance helps ensure financial data security for P&C insurers and their policyholders
FOSTER CITY Calif., 2019年4月24日

Guidewire Software, Inc. (NYSE: GWRE), provider of the industry platform Property and Casualty (P&C) insurers rely upon, today announced it has, for the third consecutive year, successfully completed a passing Payment Card Industry Report of Compliance (PCI ROC), demonstrating its compliance with the PCI DSS* (Data Security Standard) for Guidewire InsurancePlatform™ products hosted via Guidewire Cloud™, the company’s cloud environment. Additionally, the company announced that it is now a globally compliant Third-Party Agent** with VISA, demonstrating an extra level of commitment to protecting the financial data of its customers and their policyholders.

“Data security remains a top area of concern for insurers when moving their mission-critical systems to the cloud,” said Karen Furtado, Partner, Strategy Meets Action. “Guidewire is taking significant steps to ensure that its customers and their policyholder data is protected in its cloud environment which will help allay these concerns.”

“We are doing the hard work needed to assure our customers that their policyholder credit card transactions are secure as they move to Guidewire Cloud,” said Kirk Sanford, chief information security officer (CISO), Guidewire. “We believe we are the only insurance industry platform provider to have secured this level of compliance accreditation which should help give our customers confidence in our Guidewire Cloud environment running on Amazon Web Services (AWS).”

“Completing a PCI ROC and obtaining a PCI AOC (Attestation of Compliance) demonstrates the commitment Guidewire is making towards ensuring that the financial data we manage on behalf of our customers in Guidewire Cloud, remains secure,” said Oleg Ganopolskiy, group vice president, Cloud Operations and Support, Guidewire. “Our VISA TPA registration is an added layer of security for our customers.”

  • PCI DSS, PCI ROC –The Payment Card Industry Security Standards Council (PCI SSC), comprised of the five major credit card networks, created the PCI Data Security Standard (PCI DSS) to improve the security of cardholder information and to facilitate global consistency in data security standards. The PCI DSS is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment. It consists of 12 categories of requirements and testing procedures to ensure that these requirements are met. In terms of validating that a cloud service is compliant with the PCI DSS, service vendors can complete a PCI Self-Assessment Questionnaire (SAQ) or, to provide independent validation, they can hire a third-party Qualified Security Assessor (QSA) to produce a Report of Compliance (ROC). Guidewire has done the latter.

** Registered VISA Third Party Agent - All service providers who have access to cardholder data must comply with the required data security requirements prior to beginning services and must be registered in the VISA Agent Registration Program for inclusion on the Visa Global Registry of Service Providers. PCI DSS compliance validation is required every 12 months for all Level 1 and Level 2 service providers.

Guidewire has previously announced its successful completion of independent SOC 1 and SOC 2 Type 2 compliance audits for Guidewire InsurancePlatform™ products hosted via Guidewire Cloud™, the company’s cloud environment. Additional Guidewire viewpoint on the data security topic can be accessed here.

ガイドワイアについて

Guidewireは、損害保険会社の事業戦略の為に必要不可欠なプラットフォームです。弊社では、デジタル、期間業務システム、データ分析、機械学習における知見を結集したプラットフォームを、クラウドサービスとして提供しています。大小問わず、世界40カ国で540社以上の損害保険会社がガイドワイア製品を採用しています。

弊社はお客様のパートナーとして、損害保険会社におけるより良いサービスの提供とお客様満足度向上を支援する為に尽力しています。研究開発チームとパートナーエコシステムによって、これまでに1,600以上のプロジェクト成功実績があります。Marketplaceではシステム連携、ローカリゼーション、イノベーションを促進する100以上のアプリケーションを提供しています。

詳細はwww.guidewire.com.jaをご覧ください。X(旧Twitter)公式アカウントとLinkedIn(英文)も併せてご覧ください。

報道関係者の方の お問い合わせ先

お問い合わせ

Email: pr@guidewire.com