TaskUs Strengthens Security Protocol with PCI DSS and SOC 2 Certifications
- 12.10.2016 08:00 am
TaskUs, the outsourcing industry’s leader that specializes in support of high growth technology companies, announced heightened security procedures across three of its Manila-based sites including Payment Card Industry Data Security Standards (PCI DSS) Level 1 and Service Organization Control (SOC) 2 Type I certifications, the highest level of security. Paired with TaskUs’ previous PCI certification in its Manila Metro site, TaskUs continues to demonstrate its commitment to security.
The PCI DSS is designed to help organizations protect sensitive customer account data and prevent fraud and various other security issues. A consortium consisting of American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International – all founders of the Payment Card Industry Standard Council™ - developed the standard. Additionally, the SOC 2 audit was performed using the American Institute of Certified Public Accountants (AICPA) Trust Services Principles, and focused on the internal controls relevant to security, availability, processing integrity, confidentiality, and privacy of TaskUs systems.
“Customer data security is our number one priority,” explained TaskUs CEO Bryce Maddock. “Full PCI and SOC 2 compliance demonstrates that TaskUs is a partner that our clients and their end-users can trust and that we protect their most sensitive information.”
TaskUs uses ControlCase, one of the industry’s top entities for enforcing the security council standards, to evaluate its systems and ensure the highest level of compliance through quarterly scans of its devices, as well as more comprehensive annual site visits for renewal purposes.
TaskUs aligns its policies with the ISO 27001 Information Security Management System standards, as well as ITILv3 IT Service Management best practices. Other security controls measures include facial recognition access software, blind-spot free CCTV video monitors, specially modified computers and a series of policies and procedures for the employees as well that include cellphone and paper free zones, bag checks, 24/7 guarded doors and heavily restricted building access.