A Message to Our Valued Clients

In the interest of public health and the safety of our community, and in compliance with Governor Cuomo’s executive order, Freed Maxick has suspended onsite client work and cancelled all office visits. Meanwhile, our team is working remotely to provide the same high-quality service you have come to expect. Utilizing the best technology at our disposal, we will continue to meet all of your audit, tax, and advisory needs and help you navigate the business implications of the pandemic as it unfolds. You can reach your Freed Maxick representative directly by email or phone, or contact our main line at 716.847.2651.

Technology Consulting - Buffalo CPA Firm
Technology Consulting - Buffalo CPA Firm
Technology Consulting - Buffalo CPA Firm
Technology Consulting - Buffalo CPA Firm

PCI Data Security | Payment Card Industry Security Standards

PCI Data Security | Payment Card Industry Security Standards

Freed Maxick is a Qualified Security Assessor (QSA) company. QSA companies are organizations that have been qualified by the Council to assess compliance to the PCI DSS standard. Qualified Security Assessors are employees of these organizations who have been certified by the Council to validate an entity’s adherence to the PCI DSS.

If you are a merchant that accepts payment cards or a service provider that processes, transmits, or stores credit card data then you are required to be compliant with the PCI Data Security Standard. From the world’s largest corporations to small Internet stores, compliance with the PCI Data Security Standard (PCI DSS) is vital for all organizations who accept credit cards, online or offline, because nothing is more important than keeping your customer’s payment card data secure.

Freed Maxick has an experienced team of Qualified Security Assessors (QSA) who help your organization develop and maintain a complete security program. We offer a customized, flexible approach that’s based on an objective assessment of your needs. With a low management-to-staff ratio, we give you senior-level attention and personalized service. Our approach to PCI Data Security Standard compliance includes three types of services applicable to all service providers, managed hosting service providers and merchant levels:

PCI Data Security Standard assessment services – This review assesses your organization’s security against the controls listed in the PCI Self-Assessment Questionnaire or the PCI Report On Compliance (ROC) and provides recommendations for remediating any identified control gaps.

PCI Data Security Standard remediation services – This service provides feedback on remediation actions targeted to close any identified compliance gaps.

PCI Report on Compliance (ROC) – This independent validation of PCI Data Security Standard compliance provides your organization with a PCI ROC and practical recommendations for enhancing your card processing systems’ security controls.

PCI compliance and related reviews have several benefits, including:

  • Reducing control risk levels
  • Mitigating risks associated with technology
  • Providing high security standards for your customers
  • Minimizing the threat to your organization’s reputation in the case of a security breach