Home Destinations Southern Africa SANParks now PCI DSS compliant

SANParks now PCI DSS compliant

2 min read

SANParks is currently in the process of implementing new security compliant measures for credit card payments. This means the country’s conservation and tourism body is now compliant with a global information security standard known as The Payment Card Industry Data Security Standard (PCI DSS).

According to SANParks Chief Information Officer Kamal Pillay, the move strives to limit any exposure to risk and minimise potential losses incurred from compromised cardholder account information.

According to Pillay, global cybersecurity experts, Foregenix based in the UK granted SANParks E-Commerce an official certificate of compliance to PCI Data Security Standards in June this year. The SANParks website www.sanparks.org processes almost 40% of all reservations. “We are happy and proud about this achievement and would like to reassure our clients that their credit card information is safe, secure and protected when they book via the website, as according to conducted research 80% of online businesses in the world do not comply with PCI Data Security Standards.”

Pillay stated that the next big step in this regard is to implement compliance within all other booking channels – call centre, satellite offices, Wild Card, etc. He added that in order to effectively conduct this process, certain mandatory requirements will have to be followed. These include international credit card refunds that are only to be conducted through a secure environment to reduce fraud.

Where a credit card is not present as is the case for Call Centre payments, the following will be implemented:

• All payments for reservations and Wild Card where the customer is not present with their credit card will be suspended as from 02 October 2017.
• Customers will still be able to make a reservation through the Call Centres, but will be referred to alternative payment methods for payment such as a ‘Quick Payment Portal’ on our website which was released on 5 September.

Pillay said the aim of this particular portal is to assist customers to make credit card payments on specific reservations without having to go through the process of registering for ‘Online Bookings’. New Terms and Conditions (T&C) were published with this portal and we encourage customers to familiarise themselves with these T&C’s.

The portal will only require the client to enter their ‘Client Code’ and ‘Reservation Number’ in order to make a payment. “Clients are requested to note that this payment option for Wild Card will be available before the end of September 2017.”

Further to this, SANParks is also in the process of investigating Instant EFT (Electronic Fund Transfer)/SID (Secure Instant Deposit) as a payment method. This payment method will link SANParks customers directly to their Internet Banking, pre-populating the payment details and directing them back to our Website.