Stafford Associates’ New Office Building in Setauket to House PCI Compliant Data Center

Major credit card companies have made it mandatory for merchants and credit card processors
to meet the strict network security rules that went into effect in 2005. Compliance with these
rules has not been wide spread and, because of the recent breaches in security, credit card
companies are cracking down and imposing large fines and preventing some large volume
companies from processing credit cards at all until these new security rules have been met.
Stafford Associates is in the process of becoming PCI Certified (Payment Card Industry Data
Security Standard). We hope to become the first PCI Certified Company in the Tri‐
State/Metropolitan area. PCI Certification will enable us to host credit card data from
companies that are not currently certified.

What is PCI DSS?

Payment Card Industry Data Security Standard (PCI DSS)
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security practices
set forth by American Express, Discover, Japan Central Bank, MasterCard, and VISA to
protect cardholder data. It is an industry‐established policy requiring compliance by all
merchants and service providers that store, process, or transmit cardholder data.

Separate and distinct from the mandate to comply with the PCI Data Security Standard
is the validation of compliance whereby service providers like Stafford Associates verify
and demonstrate their compliance status. It is a fundamental and critical function that
identifies and corrects vulnerabilities, and protects customers by ensuring that
appropriate levels of cardholder information security are maintained.

When our new facility is completed, Stafford Associates will be proud to offer a fully
compliant State of the Art PCI Data Center that meets or exceeds the PCI Data Security
Standards.

Call 631 751 6620 for more information.