the mastercard compliant service provider list · the mastercard compliant service provider list...
TRANSCRIPT
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
1&1 Internet SE (1&1, 1&1 ipayment, ipayment.de)
05/09/2016 Security Research & Consulting GmbHEurope
1Link (Guarantee) Limited 11/17/2015 TrustwaveSAMEA
1Shoppingcart.com (Web.com Group, lnc.) 04/13/2016 SecurityMetricsUS
1stPayGateWay, LLC 05/27/2016 IBM Internet Security Systems (ISS)US
2138617 Ontario Inc. (HostedPCI Inc.) 10/13/2016 NCI Secured IntelligenceCanada
24 Solutions AB 06/15/2016 CryptoNet SrlEurope
24/7 Customer, Inc. 03/26/2016 ControlCaseUS
2C Processor USA, LLC 03/07/2016 Information Exchange Inc.US
2C2P Pte., Ltd. 01/06/2016 TrustwaveAsia Pacific
2Checkout.com (2CO E-Commerce Payments LTD)
10/26/2016 DirectDefenseUS
3C Payment Luxembourg S.A. (formerly SIX Payment Services Luxembourg SA)
12/15/2015 NTT Security Ltd.Europe
3Cinteractive Corporation 08/22/2016 Online EnterprisesUS
3dCart (Informat 2000 Corp) 03/10/2016 SecurityMetricsUS
3Delta Systems, Inc. 09/12/2016 FortrexUS
Wednesday, November 16, 2016 Page 1 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
ABC Financial Services, Inc. 07/29/2016 SecurityMetricsUS
Abila, Inc. (formerly Avectra) 08/01/2016 Coalfire Systems, Inc.US
Abtran Ltd. 10/01/2016 RitsEurope
Accelerated Payment Technologies: a division of Global Payments Direct, Inc. (OpenEdge Payments LLC)
07/14/2016 Payment Software Company (PSC)US
Accenture LLP 09/26/2015 Verizon/CybertrustUS
ACCEO Solutions Inc. 08/31/2016 UbitrakCanada
Acceptiva, LLC 09/15/2016 TrustwaveUS
Accertify, Inc. 06/17/2016 Halock Security LabsUS
Accesso, LLC 02/08/2016 TrustwaveUS
AccountNow, Inc. 10/31/2015 TrustwaveUS
Accumulate AB 09/30/2015 24 Solutions ABEurope
ACI Worldwide - Retail Decisions Inc. 12/29/2015 TrustwaveUS
ACI Worldwide, Inc. 11/20/2015 TrustwaveUS
Acquired Limited 01/22/2016 Coalfire Systems, Inc.Europe
ACS@Xerox, LLC (Xerox FPS Lockbox SunTrust Service)
07/16/2016 Cadence AssuranceUS
Active Network (Active Merchant Services) [formerly (Infospherix, ReserveWorld, AWO)]
10/31/2015 K3DES LLCUS
Acumera, Inc. 07/08/2016 Berkeley Research Group, LLCUS
Adelante Software Limited 04/23/2016 Pentest Partners Consulting LLP (PTP)Europe
Adflex Limited 07/29/2016 Evolution LTDEurope
Advam Pty Ltd. 04/26/2016 TrustwaveAsia Pacific
Wednesday, November 16, 2016 Page 2 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Adyen B.V. 08/16/2016 Payment Software Company (PSC)Europe
Affinity Solutions LLC 12/15/2015 Coalfire Systems, Inc.US
Aimia Canada Inc. and Aimia Proprietary Loyalty Canada Inc
06/17/2016 ControlCaseCanada
Airlines Reporting Corporation (ARC) 11/18/2015 Schellman & Company, Inc.US
Aizan Technologies Inc. 08/18/2016 DatassurantCanada
Akamai Technologies Inc. 06/28/2016 Cisco Systems, Inc.US
Alacriti Payments, LLC 08/08/2016 Dara SecurityUS
Alegeus Technologies, LLC 05/19/2016 TrustwaveUS
Aliaswire, Inc. 09/26/2016 Dara SecurityUS
Alignet SAC 12/24/2015 ControlCaseLatin Americ
Alipay.com Co., Ltd. (Alipay HangLv) 12/26/2015 atsec (Beijing) Information Technology CAsia Pacific
Alliance Bank Malaysia Berhad 03/11/2016 Worldline International (Malaysia) Sdn. BAsia Pacific
Alliance Data Card Services (formerly Alliance Data - Retail Services)
02/19/2016 Verizon/CybertrustUS
AllianceOne Incorporated 10/10/2016 A-Lign Security and Compliance ServicesUS
Allied Wallet Ltd. (GTBill, Baltic Bill) 02/05/2016 DirectDefenseUS
Allpay Limited 02/09/2016 Sysnet Ltd.Europe
Alorica Inc. 12/10/2015 K3DES LLCUS
Alpha Card Services Inc. 10/28/2016 Information Exchange Inc.US
Alpha Note, Inc. 12/09/2015 International Certificate Authority of Mgt Asia Pacific
Alpine Card Service Pvt. Ltd. 09/20/2016 TrustwaveAsia Pacific
Altapay A/S (formerly Pensio A/S) 09/21/2016 FortConsult A/SEurope
Wednesday, November 16, 2016 Page 3 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Altech Card Solutions (Division of Altron TMT (Pty) Ltd)
07/26/2016 Sysnet Ltd.SAMEA
Altech NuPay (Pty) Ltd 10/31/2016 Sysnet Ltd.SAMEA
Amadeus IT Group S.A. (Spain) 12/14/2015 Security Research & Consulting GmbHEurope
Amazon Web Services, LLC 07/11/2016 Coalfire Systems, Inc.US
Amazon.com, Inc. 06/15/2016 Coalfire Systems, Inc.US
Amdocs Software System, Ltd. 09/30/2016 GRSee ConsultingUS
American Bancard, LLC (Touchsuite) 08/25/2016 Enterprise Risk ManagementUS
American Well Corporation 06/15/2016 IBM Internet Security Systems (ISS)US
Americaneagle.com (Svanaco, Inc.) 10/05/2016 FortrexUS
AOC Solutions, Inc. 09/01/2016 FortrexUS
Apac Link Solutions Limited 06/18/2016 Thales Transport & Security (Hong Kong)Asia Pacific
APCO Systems Ltd. 11/24/2015 Kyte Consultants, Ltd.Europe
Aperia Solutions (formerly Data Delivery Services, Inc.)
04/30/2016 Coalfire Systems, Inc.US
Aplitt S.A. (formerly Towarzystwo Finansowe Skok S.A. (TFSKOK))
07/30/2016 Comsec Consulting, Ltd.Europe
Approval Code 05/19/2016 Dara SecurityUS
Apriva, LLC (formerly APPSware Wireless, LLC)
08/17/2016 Schellman & Company, Inc.US
Aptos, Inc. - Digital Commerce (formerly ShopVisible LLC)
10/01/2015 CompliancePoint, Inc.US
Arab Financial Services B.S.C. 05/12/2016 SISA Information Security Pvt. Ltd.SAMEA
Arab Information Technology 05/30/2016 RandomStormSAMEA
Arcelik T.A.S. 12/30/2015 Biznet Information SystemsEurope
Wednesday, November 16, 2016 Page 4 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Aria Systems, Inc. 06/10/2016 TrustwaveUS
Arise Virtual Solutions 05/18/2016 Online EnterprisesUS
Armenian Card CJSC (ARCA) 08/29/2015 InformzaschitaEurope
Armor Defense (formerly FireHost Inc.) 05/10/2016 Coalfire Systems, Inc.US
Artez Interactive 12/15/2015 ControlCaseCanada
Arvato Finance Services Ltd. 04/14/2016 Adsigo AGEurope
Ashburn International 12/30/2015 Cognit Consult, UABEurope
AsiaPay Limited 08/22/2016 TrustwaveAsia Pacific
Aspect Software, Inc. (Voxeo, Voxeo Europe Limited, Voxeo Germany GmbH)
07/19/2016 SuneraUS
Aspire Lifestyles (formerly International SOS / VIPdesk)
02/11/2016 FortrexUS
Asseco SEE d.o.o. 07/24/2016 VOC-Consultancy BVEurope
Asseco SEE Teknoloji A.Ş (formerly Elektronik Sanal Ticaret Bilisim Hizmetieri A.S. (EST A.S.))
03/31/2016 Evolution LTDEurope
ASSIST (LLC) (formerly Modern Payment Solutions Ltd.)
05/27/2016 Security Research & Consulting GmbHEurope
AT&T Cloud Storage (formerly AT&T Synaptic Storage as a Service (STaaS))
07/05/2016 TrustwaveUS
AT&T Managed Firewall Service - Premise Based
07/29/2016 ControlCaseUS
AT&T Managed Hosting 11/30/2015 TrustwaveUS
AT&T Managed Services - AT&T Content Delivery Network (ACDN)
07/11/2016 TrustwaveUS
AT&T Managed Services - AT&T Encryption Services (AES)
08/22/2016 ControlCaseUS
Wednesday, November 16, 2016 Page 5 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
AT&T Managed Services - AT&T Network Based IP VPN Remote Access Service/AT&T VPN Tunneling Service (ANIRAIAVTS)
07/08/2016 TrustwaveUS
AT&T Managed Services - AT&T Virtual Private Network Service (AVPN)/Enhanced Virtual Private Network (EVPN)/Private Network Transport (PNT)
07/29/2016 ControlCaseUS
AT&T Managed Services - Intrusion Detection Services & Intrusion Prevention Services (IDS/IPS)
07/29/2016 ControlCaseUS
AT&T Managed Services – Managed LAN Services (MLAN)
07/29/2016 ControlCaseUS
AT&T Managed Services - Managed Router Services (MRS)
07/29/2016 ControlCaseUS
AT&T Managed Services - Network Based Firewall (NBFW)
07/29/2016 ControlCaseUS
AT&T Managed Services - Network Security with Internet Access (NSIA)
07/29/2016 ControlCaseUS
AT&T Managed Services – Security Event and Threat Analysis (SETA)
08/05/2016 ControlCaseUS
AT&T Managed Services - VoiceTone/Interactive Voice Services-Advanced Plus
07/28/2016 ControlCaseUS
AT&T Synaptic Hosting & Application Services (AT&T SH&AS)
12/29/2015 TrustwaveUS
AT&T Ultravailable Storage 06/24/2016 TrustwaveUS
AT&T Wi-Fi Services (AWS) 06/14/2016 ControlCaseUS
Athenahealth, Inc. 08/25/2016 Security Risk AdvisorsUS
Atlanticus Holdings Corporation 08/01/2016 Coalfire Systems, Inc.US
Wednesday, November 16, 2016 Page 6 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Atlatl, Inc (First One Now, LLC; Simply Easier Payments)
12/31/2015 TrustwaveUS
AudienceView Ticketing Corporation 08/15/2016 NCI Secured IntelligenceCanada
Aurus Inc. (TalentBeat Inc.) 01/25/2016 K3DES LLCUS
Autoscribe Corporation (PaymentVision) 04/30/2016 ControlScanUS
AVF Consulting Inc. (ChargeLogic LLC) 12/03/2015 Dara SecurityUS
AXSY Marketing (UK) Ltd. 07/11/2016 Nettitude Ltd.Europe
AzeriCard LLC 10/22/2015 TrustwaveEurope
Bambora Device AB (formerly Samport Payment Services AB)
10/03/2016 FortConsult A/SEurope
Bamcard d.d. 04/17/2016 Nethost Legislation LtdEurope
Banco de Crédito Social Cooperativo (BCC) 10/11/2016 Internet Security Auditors, S.L.Europe
BancTec, Inc. 02/17/2016 TrustwaveUS
Bank Organization for Payments Initiated by Cards Ltd (BORICA)
09/03/2016 Security Research & Consulting GmbHEurope
Bank Windhoek 07/29/2016 Sysnet Ltd.SAMEA
Bankart - Procesiranje Placilnih Instrumentov d.o.o.
01/06/2016 IBM Internet Security Systems (ISS)Europe
BankCard USA Merchant Services 01/22/2016 Information Exchange Inc.US
Banks Processing Center JSC (BPC) 12/16/2015 InformzaschitaEurope
Bank-Verlag GmbH 05/26/2016 Security Research & Consulting GmbHEurope
Barclaycard ePDQ 02/12/2016 NTT Security Ltd.Europe
Base Commerce, LLC 06/21/2016 Sysnet Ltd.US
Bassilichi SpA 05/06/2016 KIMA Projects & ServicesEurope
Wednesday, November 16, 2016 Page 7 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Bayern Card-Services GmbH (BCS) 03/10/2016 usd AGEurope
BC Victoriabank SA (JSCB Victoriabank) 03/01/2016 TrustwaveEurope
Beanstream Internet Commerce Corp. (Beanstream Internet Commerce Inc.)
07/08/2016 Online EnterprisesCanada
Bendigo Community Telco 11/04/2015 K3DES LLCAsia Pacific
Benefitfocus.com Inc. (Benefitfocus) 06/24/2016 FortrexUS
BEPSA del Paraguay SAECA 03/28/2016 CYBSEC Security SystemsLatin Americ
Bescontact, Ltd. (i-free) 11/11/2015 Digital SecurityEurope
Bigcommerce Holdings Inc. (Bigcommerce Pty Ltd., Bigcommerce Inc.)
05/19/2016 Payment Software Company (PSC)Asia Pacific
Bill1st, LLC 09/05/2015 SecurityMetricsUS
BillingTree 06/23/2016 Megaplanit, LLCUS
Billtrust (Factor Systems, Inc.) 03/21/2016 IS Partners LLCUS
Blackbaud Internet Services 06/27/2016 Schellman & Company, Inc.US
Blackbaud Payment Service 02/16/2016 Schellman & Company, Inc.US
Blackhawk Network, Inc. and Blackhawk Network California, Inc.
07/13/2016 Coalfire Systems, Inc.US
Blended Bits, LLC (ShootProof, LLC) 07/29/2016 CompliancePoint, Inc.US
Bluepay Canada (formerly Caledon Card Services)
05/17/2016 Secured Net Solutions Inc.Canada
BluePay Processing LLC 03/31/2016 TrustwaveUS
BNY Mellon (ClearTran; Electronic Receivable Payment Services)
09/28/2016 SecurityMetricsUS
BookingSuite (USA), Inc. 11/25/2015 KalioTek, Inc.US
Bora Payment Systems LLC 11/01/2016 Dara SecurityUS
Wednesday, November 16, 2016 Page 8 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
BPC Processing, LLC (formerly BPC Banking Technologies)
04/26/2016 InformzaschitaEurope
BPS Info Solutions, Inc. (UltraCart) 08/01/2016 CompliancePoint, Inc.US
Braintree, a division of PayPal, Inc. 02/23/2016 Terra Verde LLCUS
BridgePay Network Solutions, Inc. (T-Gate Payments)
05/26/2016 A-Lign Security and Compliance ServicesUS
Brighterion 02/19/2016 KalioTek, Inc.US
Brightwell Payments Inc. (formerly Prepaid Solutions Inc.)
02/23/2016 Information Exchange Inc.US
Brinkman Financial Company, L.P. 09/30/2016 K3DES LLCUS
BTB Soft, Inc. (B2B Soft) 01/22/2016 Dara SecurityUS
Bucks Net Services Limited (BNS Payments) 12/01/2015 Foregenix LimitedEurope
Bureau Solutions Ltd. 04/01/2016 Cognosec GmbHEurope
Bypass Mobile, LLC 09/23/2016 SecurityMetricsUS
ByTechService (formerly Marco-Plus LLC) 12/28/2015 Security Research & Consulting GmbHEurope
Bytemark, Inc. 07/20/2016 SecurityMetricsUS
BZWBK SA (Bank Zachodni WBK SA) 07/13/2016 Sysnet Ltd.Europe
Cabal Brazil Ltda. 03/09/2016 TrustwaveLatin Americ
Cale Access AB (Cale Systems) 07/06/2016 TrustwaveEurope
Cantaloupe Systems, Inc. 08/12/2016 Truvantis, Inc.US
Capita Business Services (Capita Software Services)
12/29/2015 TrustwaveEurope
Capital Bank (Jordan) 03/15/2016 ControlCaseSAMEA
Capital Payments LLC (Bluefin Payment Systems / Blue Financial Corporation)
05/20/2016 Coalfire Systems, Inc.US
Wednesday, November 16, 2016 Page 9 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Card Access Services Pty Ltd. 07/29/2016 TrustwaveAsia Pacific
CardFlight, Inc 04/21/2016 SecurityMetricsUS
CardGate.net Pty Ltd 01/22/2016 Stratica International PTY LTDAsia Pacific
Cardinal Commerce Corporation 12/28/2015 Payment Software Company (PSC)US
Cardknox Development, Inc. 12/30/2015 SecurityMetricsUS
Cardlink S.A. 07/14/2016 Encode SAEurope
Cardlink Services Limited (CSL) (The BPAY Group; BPAY Pty Ltd)
06/17/2016 BAE Systems Applied Intelligence PTY LiAsia Pacific
CardProcess GmbH (VR-PAY Virtuell, POS-Netzbetrieb)
12/14/2015 Security Research & Consulting GmbHEurope
CardSmith, LLC 11/09/2015 TrustwaveUS
Cardstream Limited 08/05/2016 Securious LimitedEurope
Cardtranz 06/21/2016 IBM Internet Security Systems (ISS)US
CardWorks Servicing, LLC 03/03/2016 TrustwaveUS
Carlson Hotels, Inc. 11/26/2015 Coalfire Systems, Inc.US
Carta Solutions Processing Services Corp. 12/29/2015 TrustwaveEurope
CartaSi S.p.A. (formerly Key Client Cards & Solutions S.p.A.)
06/27/2016 Verizon/CybertrustEurope
CashFiows Europe Limited (Trading as Cashflows) (forermly Voice Commerce Ltd.)
07/15/2016 Verizon/CybertrustEurope
CashLINQ Group, LLC 09/28/2015 SecurityMetricsUS
Catalyst Corporate Federal Credit Union 12/23/2015 Tevora Business SolutionsUS
CATELLA Bank S.A. 01/15/2016 IT WorksEurope
Cayan LLC (Capital Bankcard; AVATAS Payment Solutions)
03/16/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 10 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
CBC Companies, Inc. (CBC Innovis, Inc. / Innovis Data Solutions, Inc., DataVerify)
05/10/2016 Verizon/CybertrustUS
CDMS Merchant Services Inc. 02/04/2016 Dara SecurityUS
Cedar Document Technologies 01/21/2016 Dara SecurityUS
Cendyn (Central Dynamics) 04/25/2016 SecurityMetricsUS
CenPos Inc. 09/19/2016 SecurityMetricsUS
Central Payment Corp (Smartpay Merchant Services)
11/30/2015 Coalfire Systems, Inc.US
Centre de Traitement Monetique (CTM) 08/31/2016 ControlCaseSAMEA
Centrum Rozliczeń Elektronicznych Polskie ePłatności S.A. (PeP)
04/13/2016 Sysnet Ltd.Europe
Cerdo Bankpartner AB 06/29/2016 Cybercom GroupEurope
Certain Software, Inc. 04/19/2016 Coalfire Systems, Inc.US
Certified Payments 06/21/2016 IBM Internet Security Systems (ISS)US
Certitrade AB 07/08/2016 FortConsult A/SEurope
Change Healthcare (formerly Emdeon) 02/27/2016 Lattimore, Black, Morgan and Cain, P.C.US
Charge Anywhere, LLC (Comstar Interactive) 03/17/2016 CompliancePoint, Inc.US
Chase Paymentech Solutions, LLC. 02/17/2016 TrustwaveUS
Checkout Technology Limited 08/30/2016 Sysnet Ltd.Europe
China Unionpay Data Services Co., Ltd (CUPData)
03/30/2016 atsec (Beijing) Information Technology CAsia Pacific
ChinaPay e-payment Service Co.,Ltd. 12/23/2015 atsec (Beijing) Information Technology CAsia Pacific
Chip Card a.d 05/20/2016 VOC-Consultancy BVEurope
Chronopay Services LLC 09/20/2016 Security Research & Consulting GmbHEurope
Wednesday, November 16, 2016 Page 11 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Citrus Payment Solutions Pvt Ltd. 06/26/2016 ControlCaseAsia Pacific
Civica UK Ltd 08/11/2016 TrustwaveEurope
CJSC PC "CardStandard" (Previously West Siberian Processing Center)
12/15/2015 Compliance Control Ltd.Europe
Clear Choice Merchant Services (ClearGate) 06/29/2016 Information Exchange Inc.US
Clearent, LLC 04/15/2016 Brown Smith Wallace, LLCUS
Cleverbridge 03/18/2016 Security Research & Consulting GmbHUS
Click & Pledge, Inc (Payment as a Service Corporation)
03/19/2016 ControlCaseUS
CloudPayments, LLC 05/04/2016 Deiteriy Company Ltd.Europe
ClubReady LLC 12/28/2015 Brown Smith Wallace, LLCUS
CoKinetic Systems India Pvt Ltd 03/11/2016 SISA Information Security Pvt. Ltd.Asia Pacific
CollegeNET 03/31/2016 Moss Adams LLPUS
Columbus Data Services LLC (CDS) (Innovus)
01/31/2016 K3DES LLCUS
Comdata Inc. 09/30/2016 K3DES LLCUS
CommerceGate Ireland Ltd. 07/18/2016 Compliance Control Ltd.Europe
Commercial Bank Mobiasbanca - Groupe Societe Generale S.A. (BRD GSG)
12/18/2015 Endava LTDEurope
Commonpay GmbH 10/10/2016 usd AGEurope
CommuniGate GmbH 12/18/2015 usd AGEurope
Compass Plus Ltd. (Russia) 12/28/2015 TrustwaveEurope
Complete Merchant Solutions 03/29/2016 SecurityMetricsUS
Complete Payment Systems (Latvia) 10/14/2016 NTT Security Ltd.Europe
Wednesday, November 16, 2016 Page 12 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Comprise Technologies, Inc. 03/19/2016 ControlCaseUS
Computer Services, Inc. 08/04/2016 Crowe Horwath LLPUS
Computercentrum C.van de Velden B.V. (CCV Holland)
03/21/2016 Adsigo AGEurope
CompuTop Wirtschaftsinformatik GmbH 02/18/2016 Adsigo AGEurope
Conductor Tecnologia S/A 01/29/2016 Cipher InformaticaLatin Americ
Confederacion Espanola de Cajas de Ahorros (CECABANK)
05/31/2016 S21sec Gestion, S.A.Europe
Conferma Limited 01/21/2016 NCC GroupEurope
Consorcio de Tarjetas Dominicanas, S.A. (Cardnet.com)
10/11/2016 1st Secure IT, LLCLatin Americ
Consorzio Triveneto S.p.A. 01/13/2016 KIMA Projects & ServicesEurope
Contact Solutions Inc. 04/29/2016 SecurityMetricsUS
Contact-Center LLC (Contact24) 12/18/2015 Card Security LLCEurope
Continental Finance Company (CFC) 08/05/2016 A-Lign Security and Compliance ServicesUS
ControlScan (formerly CRE Secure Payments LLC)
07/14/2016 FortrexUS
Convenient Payments, LLC (formerly Government Payments LLC)
08/12/2016 SecurityMetricsUS
ConVergence Technologies, Inc. (IPPAY) 02/12/2016 Sikich LLP (403 Labs)US
Convergys Corporation 06/29/2016 FortrexUS
Co-Op Financial Services (CU COOPERATIVE SYSTEMS, INC)
03/16/2016 Tevora Business SolutionsUS
CO-OP Member Center 03/16/2016 Tevora Business SolutionsUS
Corduro Inc. (Corduro Processing; Corduro Merchant Services)
03/10/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 13 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
CoreCard Software, Inc. 10/01/2016 CompliancePoint, Inc.US
Cornerstone Group of Companies Limited 05/04/2016 The Herjavec Group Inc.Canada
Corvus Info d.o.o (ECS Croatia) 01/29/2016 Sysnet Ltd.Europe
Credencial Argentina S.A. 11/06/2015 CYBSEC Security SystemsLatin Americ
Credimatic S.A 03/16/2016 TrustwaveLatin Americ
CreditCall Communications Ltd. 04/13/2016 Foregenix LimitedEurope
Croem, Inc. (Sigma Processing Group) [US & LAC]
11/19/2015 Yusufali & Associates LLCUS
Crosskey Banking Solutions 08/08/2016 Verizon/CybertrustEurope
CrowdTorch (formerly TicketMob) 09/15/2015 True Digital Security, Inc.US
CSCBank SAL (CSC Lebanon) 12/31/2015 O-C GroupSAMEA
CSG Media, LLC (Ascendon) 04/30/2016 AT&T Consulting Solutions, Inc. (VerisignUS
CSID (CSIDentity) 11/20/2015 Enterprise Risk ManagementUS
CSU Cardsystem S.A. 09/28/2016 Foregenix LimitedLatin Americ
CT-Paiement, Inc. / CTPayment, Inc. 09/16/2016 UbitrakCanada
Cubic Transportation Systems, Inc. (Vancouver Compass Program)
12/04/2015 Payment Software Company (PSC)US
Curbstone Corporation 12/31/2015 CompliancePoint, Inc.US
CurvePay (formerly IRN Payment Systems) 11/12/2015 Information Exchange Inc.US
Cuscal Limited 04/15/2016 Verizon/CybertrustAsia Pacific
Cvent, Inc. 08/26/2016 True Digital Security, Inc.US
CyberSource Corporation (CyberSource, Authorize.Net, CyberSource Managed Hosting, and Cybersource KK)
08/31/2015 TrustwaveUS
Wednesday, November 16, 2016 Page 14 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Cyprea Hotels & Travel Pvt. Ltd. 04/25/2016 ControlCaseAsia Pacific
Dai Nippon Printing Co., Ltd. 03/13/2016 International Certificate Authority of Mgt Asia Pacific
Dalenys Payment (formerly Rentabiliweb Europe - Be2bill)
05/12/2016 ProvadysEurope
DanDomain A/S 04/28/2016 FortConsult A/SEurope
DanubePay, a.s. 08/12/2016 FortConsult A/SEurope
Data Paradigm, Inc. (DPI) 07/27/2016 Specialized Security Services, Inc.US
Data Stream 07/12/2016 Information Exchange Inc.US
Datacom Payment Manager (Datacom Group Ltd.)
12/01/2015 Confide Ltd.Asia Pacific
DataDivider (formerly ExoIS Inc.) 09/11/2016 K3DES LLCUS
Dataline Systems, Inc. 12/31/2015 1st Secure IT, LLCUS
DataMatx, Inc. 11/23/2015 A-Lign Security and Compliance ServicesUS
DataPath, Inc. 03/02/2016 Online EnterprisesUS
DataPipe, Inc. 05/27/2016 Coalfire Systems, Inc.US
Datatrans AG 05/27/2016 Adsigo AGEurope
Datatrax Technologies, Inc. 05/09/2016 SecurityMetricsCanada
Daxko, LLC 07/01/2016 Schellman & Company, Inc.US
DeepCove Laboratories, Ltd. 09/20/2016 Sikich LLP (403 Labs)Canada
Delego Software, Inc. 07/18/2016 TrustwaveCanada
Demandware, Inc. (Demandware Digital Center)
08/26/2016 Tevora Business SolutionsUS
Desjardin Card Services (Fédération des caisses Desjardins du Québec)
08/19/2016 NCI Secured IntelligenceCanada
Wednesday, November 16, 2016 Page 15 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
DevCode Payment AB 06/01/2016 KnowIT Secure ABEurope
DIBS A/S 05/15/2016 FortConsult A/SEurope
Digital River Inc. (parent company of: Digital River GmbH, Digital River Ireland, Ltd, DR globaiTech, Inc.) (THINK Subscription)
06/30/2016 AppSec Consulting, Inc.US
Digital River World Payments Inc. (Digital River World Payments AB)
06/30/2016 AppSec Consulting, Inc.US
Direct Cash Management Inc. (Direct Cash Payments Inc.)
12/18/2015 Control Gap Inc.Canada
Direct Insite Corp 09/09/2016 Enterprise Risk ManagementUS
Direct Mail Processors Inc. 03/18/2016 FortrexUS
Direct Transact (Pty) Ltd 04/27/2016 Sysnet Ltd.SAMEA
Docdata Payments B.V. 06/03/2016 VOC-Consultancy BVEurope
Docket & Form International Limited (Dafil Ltd) 10/15/2016 O-C GroupEurope
Donor Services Group, LLC 10/14/2016 Aeris SecureUS
DST Output, LLC 04/19/2016 Optiv Security Inc.US
Duncan Parking Technologies Inc. 09/08/2016 SecurityMetricsUS
Duncan Solutions (Professional Account Management)
08/07/2016 SecurityMetricsUS
Dzetta Processing Center (Dzetta) 03/25/2016 Security Research & Consulting GmbHEurope
E La Carte, Inc. 07/22/2016 Coalfire Systems, Inc.US
Early Warning Services, LLC (EWS) 08/23/2016 Anitian CorporationUS
Easy Nolo S.p.A. 11/09/2016 NTT Security Ltd.Europe
Easy Pay Solutions, Inc. 04/22/2016 Payment Software Company (PSC)US
Easypay - instituicao de pagamento, Ida. 06/20/2016 FortConsult A/SEurope
Wednesday, November 16, 2016 Page 16 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
EasyPay (Pty) Ltd 09/12/2016 TrustwaveSAMEA
EasySoft LLC (EasyPay) 05/27/2016 Sysnet Ltd.Europe
eBay Enterprise, Inc. 11/18/2015 TrustwaveUS
E-Billing Solutions Pvt. Ltd. 02/01/2016 ControlCaseAsia Pacific
Ebocom, LLC (POST Integrations Inc.) 02/15/2016 Verizon/CybertrustUS
EBRC (e-Business Resilience Center) 12/02/2015 IT WorksEurope
eCard Solutions Ltd. (ECS) 05/17/2016 SISA Information Security Pvt. Ltd.SAMEA
Ecentric Payment Systems (Formerly E-Centric Switch)
01/08/2016 TrustwaveSAMEA
Ecommpay LTD 02/11/2016 Sysnet Ltd.Europe
E-Complish, LLC 03/05/2016 Payment Software Company (PSC)US
ECSuite, LLC 08/31/2016 Coalfire Systems, Inc.US
Edenred (Edenred North America Inc, Edenred Commuter Benefit Solutions LLC (f/kla WiredCommute LLC), Commuter Check Services Corporation)
10/22/2015 Compass IT ComplianceUS
Edgil Associates, Inc 01/19/2016 Dara SecurityUS
EDI Health Group (DentalXChange) 09/30/2016 KalioTek, Inc.US
EDPS (Electronic Data Processing Source SA)
10/31/2016 O-C GroupEurope
eGov Strategies, LLC 06/10/2016 Rook ConsultingUS
Egyptian Banks Company (EBC) 11/26/2015 Odyssey Consultants LimitedSAMEA
Eigen Development, LTD. 10/19/2016 Payment Software Company (PSC)Canada
Elavon Merchant Services Europe 01/13/2016 Verizon/CybertrustUS
Wednesday, November 16, 2016 Page 17 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Elavon Mexico (Merchant Services de México S.A. de C.V.)
11/30/2015 Verizon/CybertrustLatin Americ
Elavon, Inc. (Elavon North America, Internet Secure, Fusebox, Southern DataCom (SDC))
06/18/2016 Verizon/CybertrustUS
Electronic Merchant Systems (OH based) (The Francis David Corporation)
04/26/2016 TrustwaveUS
Electronic Payments, Inc. (NY) 10/24/2016 Information Exchange Inc.US
Electronic Processing Services, LLC 05/09/2016 Information Exchange Inc.US
Electronic Transaction Consultants Corporation (ETC Corporation)
04/20/2016 nGuard Inc.US
Electronic Transaction Systems Corporation (ETS Corp)
01/20/2016 Verizon/CybertrustUS
Element Payment Services Inc. (Element, EPS, Element Payment Services, a Vantiv Company)
01/06/2016 Optiv Security Inc.US
Emaratech FZ LLC 02/11/2016 Encode SASAMEA
Emerging Markets Payments (EMP) Financial Payments Solutions
01/04/2016 TrustwaveSAMEA
Emerging Markets Payments Jordan (EMP-J) 12/31/2015 TrustwaveSAMEA
EMIS - Empresa Interbancaria de Servicos 02/12/2016 FortConsult A/SSAMEA
Enacomm, Inc. 03/07/2016 True Digital Security, Inc.US
Endeavour Internet Business Solutions Ltd. (EIBS)
07/11/2016 Odyssey Consultants LimitedEurope
E-net Co., Ltd. 12/01/2015 International Certificate Authority of Mgt Asia Pacific
ePay A/S 03/17/2016 FortConsult A/SEurope
Epay AD (Epay.bg) 12/24/2015 TrustwaveEurope
ePay Healthcare 11/30/2015 360 Advanced, P.A.US
Wednesday, November 16, 2016 Page 18 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
ePayData 10/26/2016 Information Exchange Inc.US
ePayLinks Limited (Branded as “ePayLinks”) 12/25/2015 atsec (Beijing) Information Technology CAsia Pacific
Epicor Software Company 10/17/2016 TrustwaveUS
Epoch.com, LLC 10/28/2016 ProtivitiUS
eProcessing Network, LLC 03/18/2016 TrustwaveUS
EPS LT, UAB (formerly Universalios Valdymo Sistemos (UVS Lithuania))
12/12/2015 NTT Security Ltd.Europe
EPX Acquisition Company, LLC (Electronic Payment Exchange (EPX))
06/14/2016 Payment Software Company (PSC)US
Equens SE (Acquirer and Issuer) 04/18/2016 Noordbeek B.V.Europe
Equiant Financial Services, Inc. 07/27/2016 DatassurantUS
Equifax (US) 09/30/2016 Habif, Arogeti & Wynne, LLPUS
Erste Group Card Processor d.o.o. 01/19/2016 TrustwaveEurope
Escalion S.a.r.l. (Escalion) 11/15/2015 NTT Security Ltd.Europe
Ethoca Ltd. 07/14/2016 Sysnet Ltd.Canada
eTranzact Global 02/16/2016 ControlCaseSAMEA
Euro Payment Group GmbH 09/30/2016 Adsigo AGEurope
Euronet Pakistan (PVT) Limited 05/16/2016 Risk Associates/Gaming Associates Inc.SAMEA
Euronet Services India Private Limited 12/24/2015 ControlCaseAsia Pacific
Euronet Worldwide, European EFT Business 07/15/2016 Security Research & Consulting GmbHEurope
Eventbrite, Inc. 03/11/2016 Coalfire Systems, Inc.US
Everi, Inc. 12/14/2015 TrustwaveUS
Evertec Group, LLC 05/05/2016 1st Secure IT, LLCLatin Americ
Wednesday, November 16, 2016 Page 19 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Evertec Latinoamerica S.A. (EVERTEC Costa Rica-Mexico-Panama)
12/21/2015 1st Secure IT, LLCLatin Americ
EveryPay AS 02/16/2016 TrustwaveEurope
EVO Merchant Services Inc. (EVO Payments International, LLC)
10/14/2016 TrustwaveUS
Evolution1 04/29/2016 Compass IT ComplianceUS
Evry Card Issuing Services 10/06/2016 FortConsult A/SEurope
EVRY Card Services AB (CSAB) 06/15/2016 FortConsult A/SEurope
EVRY Card Services AS (CE5) 01/29/2016 FortConsult A/SEurope
Evry FD Card (EVRY AS Norge) 03/08/2016 FortConsult A/SEurope
E-xact Transactions (Canada) 08/15/2016 A-Lign Security and Compliance ServicesCanada
Exigo Payment Service 03/07/2016 SecurityMetricsUS
Exorigo-UPOS Sp. z o.o. 01/29/2016 SC2LabsEurope
Expert Global Solutions, Inc. (NCO Group, Inc., APAC Customer Services, Inc., EGS, Inc.)
02/24/2016 Payment Software Company (PSC)US
EZ Facility.com Inc. 07/29/2016 TrustwaveUS
Ezic, Inc. 10/24/2016 Information Exchange Inc.US
Ezidebit Pty Ltd. 08/12/2016 TrustwaveAsia Pacific
Facebook Payments, Inc. 08/24/2015 Urbane SecurityUS
Fast Print & System LTDA (Fast Solutions) 08/21/2015 TrustwaveLatin Americ
Fat Zebra Pty LTD 04/04/2016 PCI Consulting Australia PTY, LTDAsia Pacific
Fawry Integrated Systems 12/02/2015 ControlCaseSAMEA
Feecounter Online Services (P) Ltd. 08/31/2016 ControlCaseAsia Pacific
Wednesday, November 16, 2016 Page 20 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Fexco Merchant Services (Fexco DCC (Dynamic Currency Conversion Limited))
05/07/2016 O-C GroupEurope
Fidelity Information Services - (FIS) Brazil, Fidelity Processadora e Services SA (FPS)
05/27/2016 Schellman & Company, Inc.Latin Americ
Fidelity Information Services - (FIS) Payments (UK) Limited
10/21/2015 TrustwaveEurope
Fidelity Information Services - Electronic Payment Presentment (FIS-EPP)
08/26/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) - Certegy Card Services
10/01/2015 TrustwaveEurope
Fidelity Information Services (FIS) - Clear Commerce - New Berlin
07/13/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) - EFT / Payment Processing Norcross, GA
06/13/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) - Issuing Solutions, Debit Account, and Prepaid Card Solutions, Brown Deer, WI (BDOC)
06/21/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) - Mobile Banking
10/14/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) - Profile Outsourcing
12/29/2015 TrustwaveUS
Fidelity Information Services (FIS) - St. Petersburg Debit EFT (formerly Chicago Authnet)
12/23/2015 TrustwaveUS
Fidelity Information Services (FIS) Australasia Pty PP Ltd
12/23/2015 TrustwaveAsia Pacific
Fidelity Information Services (FIS) Biller Service Provider, Brown Deer, WI
09/28/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) Electronic Payment Services (EPS), New Berlin, WI
09/30/2016 SecurityMetricsUS
Wednesday, November 16, 2016 Page 21 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Fidelity Information Services (FIS) Global Business Solutions India Private Limited - Business Process Outsourcing (BPO)
09/06/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Fidelity Information Services (FIS) Lisle & Canton Remittance Processing Facility
12/29/2015 TrustwaveUS
Fidelity Information Services (FIS) NYCE Payments Network, Brown Deer, WI
12/30/2015 TrustwaveUS
Fidelity Information Services (FIS) PayDirect Solutions - Government (fomerly Link2Gov, Inc.)
03/23/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) Payment and Solutions Services (PSS) India
10/06/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Fidelity Information Services (FIS) Remittance Processing, St. Petersburg, FL.
09/26/2016 Schellman & Company, Inc.US
Fidelity Information Services (FIS) Sunrise Prepaid Processing
05/27/2016 IBM Internet Security Systems (ISS)US
Fidelity National Information Services, Inc. (FIS) Credit, Loyalty and Merchant Services
05/23/2016 Schellman & Company, Inc.US
Fidelity Output Solutions (FIS) - Output Solutions
07/21/2016 Schellman & Company, Inc.US
Financial Software and Systems Pvt. Ltd. (FSSNeT- Payment Gateway Services)
09/06/2016 ControlCaseAsia Pacific
Financial Transaction Services (CardConnect) (formerly Princeton Payments Solutions, LLC)
09/25/2015 SecurityMetricsUS
Financial Transmission Network, Inc. 02/24/2016 TrustwaveUS
Finanz Informatik GmbH & Co. KG 08/12/2016 usd AGEurope
Finanz Informatik Technologie Service GmbH & Co. KG
02/12/2016 usd AGEurope
Wednesday, November 16, 2016 Page 22 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
FINEXUS International Sdn Bhd (ePROTEA and FINEXUS Group)
06/20/2016 TrustwaveAsia Pacific
Fintrax Teoranta 07/14/2016 NTT Security Ltd.Europe
FireID Payments Pty Ltd (SnapScan) 06/08/2016 TrustwaveSAMEA
First American Payment Systems, LP 08/01/2016 IBM Internet Security Systems (ISS)US
First Atlantic Commerce Ltd. 04/22/2016 SecurityMetricsLatin Americ
First Data - Concord Financial Technologies (CFT) - (First Data Prepaid Services)
09/18/2016 TrustwaveUS
First Data - Government Solutions (FDGS) 09/18/2016 TrustwaveUS
First Data - Money Network (Concord Financial Technologies)
09/18/2016 TrustwaveUS
First Data - Secure Transport (Datawire) 09/18/2016 TrustwaveUS
First Data – STAR (First Data STAR Networks Inc., First Data STAR Processing Systems Inc., First Data STAR Systems Inc.)
09/18/2016 TrustwaveUS
First Data - TeleCheck 09/18/2016 TrustwaveUS
First Data CAC, (Processing Center, S.A.) 03/24/2016 TrustwaveLatin Americ
First Data Do Brasil Solucoes de Pagamento LTDA (FD Brazil)
04/07/2016 TrustwaveLatin Americ
First Data India Pvt Ltd 10/26/2016 TrustwaveAsia Pacific
First Data International - China 09/12/2016 TrustwaveAsia Pacific
First Data International - Cono Sur (POSNET S.R.L)
03/16/2016 TrustwaveLatin Americ
First Data International - Deutschland (Germany)
09/25/2016 TrustwaveEurope
First Data International - Hellas (Greece) 11/25/2015 TrustwaveEurope
Wednesday, November 16, 2016 Page 23 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
First Data International - Italy 10/13/2016 TrustwaveUS
First Data International - Latvia 11/18/2015 TrustwaveEurope
First Data International - OmniPay Limited 10/12/2016 TrustwaveEurope
First Data International - Polska S.A. (Polcard) 05/25/2016 TrustwaveEurope
First Data International - TeleCash / First Data Global Services
09/26/2016 TrustwaveEurope
First Data International - UAB First Data Lietuva (Lithuania)
11/16/2015 TrustwaveEurope
First Data International - United Kingdom 10/15/2015 TrustwaveEurope
First Data International (FDI) - European Merchant Services (EMS)
10/05/2016 TrustwaveEurope
First Data International ANZ (First Data ANZ; FD ANZ)
09/15/2016 TrustwaveAsia Pacific
First Data Merchant Services (FDMS (PaySpring))
09/18/2016 TrustwaveUS
First Data Payeezy Gateway (Linkpoint, YourPay, First Data Global Gateway, Global Gateway E4)
09/18/2016 TrustwaveUS
First Data Remitco 09/18/2016 TrustwaveUS
First Data Resources 09/18/2016 TrustwaveUS
First Data Resources South Africa (Proprietary) Limited (First Data Merchant Solutions)
05/20/2016 TrustwaveSAMEA
First Data Slovakia s.r.o and First Data International Serbia
11/25/2016 TrustwaveEurope
First Ukrainian International Bank (FUIB) 05/26/2016 Compliance Control Ltd.Europe
FirsTech, Inc. 02/12/2016 Schellman & Company, Inc.US
Wednesday, November 16, 2016 Page 24 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
FIS Payments (UK) Limited - Debit & Prepaid (formerly Metavante Technologies Limited)
11/20/2015 TrustwaveEurope
FIS PayNetExchange (formerly SunGard AvantGard)
04/30/2016 K3DES LLCUS
Fiserv - Bank Solutions Eastern Region Atlanta Service Center Service Center
02/23/2016 Payment Software Company (PSC)US
Fiserv - Bank Solutions Precision Outsourcing 10/31/2016 Payment Software Company (PSC)US
Fiserv - Bank Solutions Product Management, Development and Support
07/21/2016 Payment Software Company (PSC)US
Fiserv - BillMatrix (aka OnDemand) 09/30/2016 Payment Software Company (PSC)US
Fiserv - Card Services - Credit Services (Formerly assessed as Fiserv - EFT and Fiserv - Card Services - Credit)
07/11/2016 Payment Software Company (PSC)US
Fiserv - Customer Solutions 11/30/2015 Payment Software Company (PSC)US
Fiserv - Electronic Payments (Fiserv ePayments )
10/29/2015 Payment Software Company (PSC)US
Fiserv - Lending Solutions - Contact and Service Center (Formerly Amherst Call Center)
04/07/2016 Payment Software Company (PSC)US
Fiserv - Lending Solutions - LoanServ 11/20/2015 Payment Software Company (PSC)US
Fiserv - Prepaid Solutions 02/05/2016 Payment Software Company (PSC)US
Fiserv - Signature Development Lake Mary 08/04/2016 Payment Software Company (PSC)US
Fiserv - Virtual Branch 11/23/2015 Payment Software Company (PSC)US
Fiserv - Xroads 02/26/2016 Payment Software Company (PSC)US
Fiserv Bank Solutions - Premier Outsourcing Western Region Des Moines Service Center
11/10/2015 Payment Software Company (PSC)US
Fiserv Card Services - Debit Services 07/11/2016 Payment Software Company (PSC)US
Wednesday, November 16, 2016 Page 25 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Fiserv India Pvt. Ltd. 07/25/2016 ControlCaseAsia Pacific
Fiserv Output Solutions - Electronic Document Delivery (EDD)
02/26/2016 Payment Software Company (PSC)US
Fiserv Solutions - Enterprise Technology Group - Johns Creek, GA, Irving, TX and Lewisville, TX Data Centers
10/14/2016 Payment Software Company (PSC)US
Forte Payment Systems (formerly ACH Direct) 04/14/2016 TrustwaveUS
Fosdick Fullfillment Corporation 07/18/2016 TrustwaveUS
FoxyCart.com, LLC 05/07/2016 Specialized Security Services, Inc.US
FreedomPay, Inc. 08/25/2016 Coalfire Systems, Inc.US
Freestyle Solutions, Inc. (formerly Dydacomp Development Corp.)
05/02/2016 Compass IT ComplianceUS
FreeWay Aps 02/16/2016 FortConsult A/SEurope
FrontStream Payments, Inc. / FirstGiving Inc. 06/05/2016 ControlCaseUS
FSV Payment Systems, Inc. 05/13/2016 Verizon/CybertrustUS
Fujitsu America 04/21/2016 Verizon/CybertrustUS
FundsTech Corporation PTY (LTD) (FNDS3000 Corp)
10/26/2015 TrustwaveSAMEA
Fuze Network 05/18/2016 SecurityMetricsUS
Galileo Processing, Inc. 03/15/2016 Cadence AssuranceUS
Ganart Technologies 02/11/2016 ControlCaseUS
Gateway Ticketing Systems, Inc. 10/27/2016 Secure State ConsultingUS
Gazcardservice Ltd. 10/31/2016 Compliance Control Ltd.Europe
Genesis Financial Solutions, Inc. 08/28/2015 TrustwaveUS
Wednesday, November 16, 2016 Page 26 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Genesys - Angel.com Division (Angel.com and Premier Edition Cloud (PEC))
08/25/2016 Verizon/CybertrustUS
Genesys - SoundBite Division (SoundBite Communications and Proactive Customer Communication (PCC))
09/02/2016 Verizon/CybertrustUS
GetNet Adquirencia e Servic;os para meios de Pagamentos S.A.
06/30/2016 Cipher InformaticaLatin Americ
GHL ePayments Sdn Berhad (GHL ePayments Co.,Ltd. (Thailand), GHL Systems Philippines, Inc. (Philippines))
09/12/2016 TrustwaveAsia Pacific
Gingerbread Shed Corporation 12/31/2015 TrustwaveUS
Gisland Ltd. (Cassava, Brigend, 888 Holdings, Dixie, VMSI srl, 888 Spain PLC)
12/31/2015 GRSee ConsultingEurope
Global Cash Card - (World Processing Limited)
11/03/2016 Coalfire Systems, Inc.US
Global Collect Services B.V. (Global Collect Services USA, Global Collect Services, lngenico ePayments)
09/15/2016 TrustwaveEurope
Global Payments Asia Pacific Limited 12/08/2015 Payment Software Company (PSC)Asia Pacific
Global Payments Direct Inc. (Global Payments Global Service Center)
12/05/2015 Payment Software Company (PSC)US
Global Payments Europe, s.r.o. 11/11/2015 Payment Software Company (PSC)Europe
Global Processing Centre 10/01/2016 Information Exchange Inc.US
Global Processing SA 08/21/2015 TrustwaveLatin Americ
Global Processing Services Limited (formerly Global Processing Services FZLLC)
09/11/2015 Convergent Network Solutions, LtdSAMEA
Global Technology Partners LLC 06/29/2016 Coalfire Systems, Inc.US
GoDaddy.com, LLC (Quick Shopping Cart) 12/15/2015 Coalfire Systems, Inc.US
Wednesday, November 16, 2016 Page 27 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
GoEmerchant, LLC 05/27/2016 IBM Internet Security Systems (ISS)US
GOPAY s.r.o. 08/31/2016 Wincor Nixdorf s.r.o.Europe
goSwiff Ltd. (formerly SCCP Payment Services Holdings Pte. Ltd)
10/06/2016 ControlCaseAsia Pacific
Govolution, LLC 05/30/2016 IBM Internet Security Systems (ISS)US
Grant Street Group 10/25/2015 SecurityMetricsUS
Green Dot Corporation (Next Estate Communications, Inc.)
10/21/2016 SecurityMetricsUS
Group ISO 05/20/2016 Dara SecurityUS
GTECH UK Interactive Ltd. 10/23/2015 NTT Security Ltd.Europe
Hamer Enterprises 12/09/2015 SecurityMetricsUS
Harte-Hanks, Inc. 11/30/2015 CyberEnsure, LLCUS
HCL Technologies (BPO Services) 10/23/2015 ControlCaseAsia Pacific
HealthPlan Services, Inc. 04/15/2016 GuidePoint Security, LLCUS
Heartland Payment Systems, Inc. 04/20/2016 Coalfire Systems, Inc.US
Heidelberger Payment Consulting GmbH 04/08/2016 usd AGEurope
Helcim Inc. 06/25/2016 Secured Net Solutions Inc.Canada
Help Line S.p.A 06/30/2016 Verizon/CybertrustEurope
Hewlett Packard (Canada) Co. - (TD Bank Environment)
06/30/2016 TELUS Security SolutionsCanada
Hewlett Packard Taiwan Limited 11/06/2015 Evolution LTDAsia Pacific
Higher One, Inc. (CASHNet) 01/15/2016 Coalfire Systems, Inc.US
Highline Software, Inc. 04/27/2016 SecurityMetricsUS
HighRadius Corporation 08/19/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 28 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
HiPay (HiPay, HiPay Fullservice, HiPay TPP, HiPay mobile, Allopass)
03/04/2016 XMCO PartnersEurope
Hitachi Payment Services Private Limited (formerly Prizm Payment Services Pvt. Ltd.)
03/15/2016 ControlCaseAsia Pacific
Hosting.com, Inc. 07/01/2016 360 Advanced, P.A.US
Hotelbeds Technology, S.L.U. 12/21/2015 Internet Security Auditors, S.L.Latin Americ
HP - Enterprise Services Regional Cards and Payments Utility (HP RCU)
09/03/2015 Vectra CorporationAsia Pacific
HP - Hewlett Packard - Brazil (HP Brazil Cards-Utility)
10/12/2015 TrustwaveLatin Americ
HP Enterprise Services - Commercial Card 12/30/2015 TrustwaveUS
HP Enterprise Services - Convenience Pay 12/22/2015 TrustwaveUS
HP Enterprise Services - Guidance Authorization
12/31/2015 TrustwaveUS
HP Enterprise Services - Merchant Acquirer 01/13/2016 TrustwaveUS
HP Enterprise Services - RCU Americas 01/25/2016 TrustwaveAsia Pacific
HPME (Hi-Media Porte-Monnaie Electronique) SA (HIPAY Wallet, HIPAY Direct)
03/04/2016 XMCO PartnersEurope
Hughes Network Systems 10/23/2015 IBM Internet Security Systems (ISS)US
Hugin Yazilim Teknolojileri 06/30/2016 Apersky Consulting LLCEurope
Hyperwallet Systems Inc. (HSI) 09/23/2016 Bell CanadaCanada
i2c, Inc. (US, Canada, Latin America, Europe, Asia Pac, and SAMEA)
01/04/2016 TrustwaveUS
IATS, LLC (IATS Payments) 08/10/2016 IBM Internet Security Systems (ISS)US
Wednesday, November 16, 2016 Page 29 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
IBM Deutschland Aviation Industry Services GmbH (formerly INF Services GmbH & Co. KG)
03/31/2016 usd AGEurope
IBM Payment Gateway 01/13/2016 TrustwaveEurope
Ibox Ltd. 06/30/2016 BMS Consulting LLCEurope
ICCREA BANCA SPA 10/02/2015 Bl4ckswan S.r.l.Europe
IGMWEB, S. L. (ROOMLEADER) 03/29/2016 Internet Security Auditors, S.L.Europe
Ignite Payments, LLC (First Data - Card Services International (CSI))
09/18/2016 TrustwaveUS
iMobile3, LLC (iM3 Pro, PassMarket, iM3 Register)
03/31/2016 CompliancePoint, Inc.US
Inatec Payment AG (Inatec Solutions GmbH) 12/15/2015 Security Research & Consulting GmbHEurope
Index Systems Inc. 05/16/2016 Megaplanit, LLCUS
IndiaIdeas.com Limited (BillDesk) 08/30/2016 ControlCaseAsia Pacific
Industrial and Commercial Bank of China Limited (ICBC)
08/01/2016 atsec (Beijing) Information Technology CAsia Pacific
Infinitium Solutions Sdn. Bhd 03/24/2016 TrustwaveAsia Pacific
Infinity Data Corporation 12/16/2015 Information Exchange Inc.US
InfoCision Management Corporation (K & L Teleservices)
09/29/2015 SecurityMetricsUS
Information Technology Consultants (PTY) Ltd.
10/28/2015 TrustwaveSAMEA
InfoSend 06/27/2016 SecurityMetricsUS
InfusionSoft 10/19/2015 SecurityMetricsUS
Ingenico e-Commerce Solutions BVBA/SPRL (formerly Ogone)
09/15/2016 NTT Security Ltd.Europe
Wednesday, November 16, 2016 Page 30 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Ingenico Iberia S.L. 09/01/2015 Cognosec GmbHEurope
Innoviti Payment Solutions Pvt. Ltd. 07/29/2016 ControlCaseAsia Pacific
Inovio Payments, LLC (Argus Payments) 06/01/2016 TrustwaveUS
INPAS Company, LLC 10/05/2015 TrustwaveEurope
Inpas International East LLC (Transaction Systems PSP)
01/06/2016 TrustwaveEurope
Insight Card Services 10/25/2016 SecurityMetricsUS
In-Solutions Global Pvt Ltd (ISG) 05/08/2016 ControlCaseAsia Pacific
INSOnline Limited 06/18/2016 usd AGEurope
InstaMed Communications 03/02/2016 TrustwaveUS
Integrated Multichannel Solutions SL 04/24/2016 S21sec Gestion, S.A.Europe
Integrity Payment Systems 02/03/2016 K3DES LLCUS
Interactive Communication International, Inc. (InComm) – Datawave Systems, Inc.
09/30/2016 IIT Information and Infrastructure TechnoUS
Interactive Transaction Solutions Limited (ITS) 11/13/2015 O-C GroupEurope
Interbancos SA 11/16/2015 TrustwaveSAMEA
InterCard AG 12/03/2015 Adsigo AGEurope
Interface Technologies (Reservit) 09/09/2016 XMCO PartnersEurope
International Bancard Corporation 11/30/2015 Merchant Preservation Services, LLCUS
International Card Systems AD (Casys) 06/13/2016 Adsigo AGEurope
International Cards Processing Services Ltd. (ICPS) (Mauritius Commercial Bank Ltd. (MCB))
12/02/2015 ControlCaseSAMEA
International Processing Systems LLC 02/02/2016 InformzaschitaEurope
Wednesday, November 16, 2016 Page 31 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Internet Ticketing Systems, Inc. (PrintTixUSA, Diamond Payment Systems, Diamond Ticketing Systems, ImagiTix)
11/25/2015 SecurityMetricsUS
Intersections Inc. 10/17/2016 ControlCaseUS
Interswitch Limited 05/13/2016 TrustwaveSAMEA
Intesa Sanpaolo Card limited liability company for card business
01/11/2016 Adsigo AGEurope
Intesa Sanpaolo Card payment card processing and development Ltd
10/13/2016 Adsigo AGEurope
Intrix Technology Inc. 04/01/2016 TrustwaveUS
Intuition, LLC (Bill2Pay) 10/26/2015 SecurityMetricsUS
IP Payments Pty Ltd. 03/31/2016 Vectra CorporationAsia Pacific
iPay (Pty) Ltd 05/09/2016 Sysnet Ltd.SAMEA
iPayment Technologies, Inc. 05/23/2016 TrustwaveUS
IPG Holdings Limited (Cyprus, Reg No.: HE 201826)
12/03/2015 Sikich LLP (403 Labs)Europe
IPS Group Inc. (North America, Mexico, and Canada)
10/14/2015 Tevora Business SolutionsUS
iQmetrix Software Development Corp. 09/20/2016 Above SecurityCanada
Iridium Corporation Limited 01/14/2016 SecuriCentrixEurope
Iron Mountain Information Management, Inc. (Iron Mountain)
08/18/2016 TrustwaveUS
ISPIN AG 12/15/2015 TUV SUD Management Service GmbHEurope
IT Card Centrum Technologii Ptatniczych SA (IT Card S.A.)
10/26/2016 IBM Internet Security Systems (ISS)Europe
ITS System Integrators Co. Inc. 11/30/2015 A-Lign Security and Compliance ServicesLatin Americ
Wednesday, November 16, 2016 Page 32 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Iveri Payment Technology (Pty) Ltd 05/13/2016 TrustwaveSAMEA
Ixaris Systems (Malta) Ltd. (Entropay, lxaris Solutions, laxris Technologies)
12/17/2015 Kyte Consultants, Ltd.Europe
iZettle AB 06/20/2016 KnowIT Secure ABEurope
J.J. Mackay Canada Limited / Mackay Meters, Inc.
04/18/2016 TrustwaveCanada
J4S 03/10/2016 FortytwoEurope
JCC Payment Systems 07/14/2016 TrustwaveEurope
Jelecos 12/16/2015 K3DES LLCUS
JetPay, LLC 03/22/2016 Kirkpatrick Price, Inc. dba Raven EyeUS
JHA Enterprise Payment Solutions (EPS) 09/25/2015 Coalfire Systems, Inc.US
JHA PPS - JHA Payment Processing Solutions - JHA PassPort EFT Solutions
08/31/2015 Coalfire Systems, Inc.US
Joint Electronic Teller Services Limited (JETCO)
03/06/2016 Evolution LTDAsia Pacific
JOINT-STOCK COMMERCIAL BANK “Agropromcredit”
12/24/2015 DialogueScience CJSCEurope
Jonas Fitness, Inc. 07/11/2016 Payment Software Company (PSC)US
JSC "Alfa·Bank'' 12/01/2015 DialogueScience CJSCEurope
JSC "National Payment Card System" (NSPK) 12/18/2015 Digital SecurityEurope
JSC Finam Bank 10/01/2015 DialogueScience CJSCEurope
JSC Georgian Card 10/17/2016 TrustwaveEurope
JSC Kazkommertsbank (KazKom) 12/11/2015 FortConsult A/SSAMEA
JSC Liberty Bank 10/29/2016 TrustwaveEurope
JSC Sirena-Travel 02/02/2016 InformzaschitaEurope
Wednesday, November 16, 2016 Page 33 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
JSC UkrCard 04/29/2016 TrustwaveEurope
JSC United Financial Corporation 10/03/2016 TrustwaveEurope
Kalio, Inc. (D.M.insite) 04/07/2016 A-Lign Security and Compliance ServicesUS
Kalixa Operations GmbH 12/18/2015 Adsigo AGEurope
Karbil Yazilim ve Bilisim Teknolojileri Tic. A.S. (Cardtek Payment Processing Services formerly known as Cordis Network)
10/14/2016 Biznet Information SystemsEurope
Klarna AB 11/14/2015 NTT Security Ltd.Europe
Klik Technologies Corporation 05/05/2016 Information Exchange Inc.US
Kobie Marketing, Inc. 01/04/2016 A-Lign Security and Compliance ServicesUS
Korta Payments (Kortathjonustan hf) 05/10/2016 FortConsult A/SEurope
Kount, Inc. (Keynetics) 10/08/2015 TrustwaveUS
KPS Payment GmbH & Co. KG 09/02/2016 Adsigo AGEurope
Krajowa Izba Rozliczeniowa S.A. 05/25/2016 SC2LabsEurope
Krueger Associates, Inc. (National Fulfillment Services)
10/26/2015 SecurityMetricsUS
KuaiQian Payment and Settlement Service Company Limited (99Bill)
09/11/2016 atsec (Beijing) Information Technology CAsia Pacific
Kubra Data Transfer Limited 02/16/2016 (1) Modosecurity Inc.Canada
Lamda Card Services Ltd. 10/27/2015 TrustwaveEurope
LexisNexis VitalChek Network, Inc. 08/10/2016 Schellman & Company, Inc.US
Linq3 Technologies, LLC 10/16/2015 Payment Software Company (PSC)US
Liturgical Publications, Inc. 11/20/2015 Tech Lock Inc.US
LiveOps Inc. 04/27/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 34 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Living Social (ONOSYS - Online Ordering System) - (O-Web Technologies Inc.)
01/20/2016 Secure State ConsultingUS
LLC "SEND" 03/18/2016 BMS Consulting LLCEurope
llixium Ltd. (Trustpay Gaming) 09/15/2016 TrustwaveEurope
lnpas Company LLC 10/05/2015 TrustwaveEurope
Lottomatica Scommesse S.R.L. 09/23/2016 NTT Security Ltd.Europe
Lufthansa AirPlus Servicekarten GmbH - Overall Acq Services, Issuing Processing and additional infrastructure
12/03/2015 Security Research & Consulting GmbHEurope
Lukoil – Inter-Card LLC 02/29/2016 Jet InfosystemsEurope
Lyra Network (France) 07/15/2016 Security Research & Consulting GmbHEurope
M&A Ventures, LLC (REPAY - Realtime Electronic Payments)
12/14/2015 Dara SecurityUS
M2 Payment Solutions (formerly M2Financial LTD)
07/18/2016 Information Exchange Inc.US
Madison Performance Group 08/31/2015 Grant ThorntonUS
Magensa, LLC (a subsidiary of MagTek) 08/29/2016 Tevora Business SolutionsUS
Magic-Wrighter, Inc. 02/24/2016 TrustwaveUS
Magl Loyalty Services, Inc. 07/07/2016 Tevora Business SolutionsUS
Magyar Kartya Szolgaltato Zrt. 07/15/2016 Apersky Consulting LLCEurope
Main Street Softworks, Inc. 10/03/2016 Dara SecurityUS
Maintech 12/14/2015 IBM Internet Security Systems (ISS)US
Mako Networks Ltd. 05/10/2016 Verizon/CybertrustAsia Pacific
Managepay Services Sdn Bhd (MPSB) 03/31/2016 ControlCaseAsia Pacific
MarketLive, Inc. 12/30/2015 Online EnterprisesUS
Wednesday, November 16, 2016 Page 35 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Marqeta, Inc 11/03/2016 Schellman & Company, Inc.US
Masabi, LLC 09/25/2015 Teamwork IMSEurope
MasterCard Payment Transaction Services S.A. (MPTS)
07/20/2016 Foregenix LimitedEurope
MattsenKumar Services Pvt Ltd 09/17/2016 ControlCaseAsia Pacific
Maxpay Limited 05/12/2016 Sysnet Ltd.Europe
Maxwell Paper Canada Inc. 12/04/2015 TELUS Security SolutionsCanada
McKesson Business Performance Services (BPS) - McKesson Revenue Management Solutions (RMS)
02/25/2016 TrustwaveUS
MCX Systems Sp. z o.o. 07/15/2016 SC2LabsEurope
MDM Bank, OJSC 10/10/2016 Jet InfosystemsEurope
Medfusion Inc. 11/25/2015 Agio, LLCUS
Mercadotecnia, Ideas y Tecnologia S.A. de C.V. (MITEC)
06/07/2016 Foregenix LimitedLatin Americ
Merchant e-Solutions, a Cielo Company 08/22/2016 Coalfire Systems, Inc.US
Merchant Link, LLC 03/24/2016 TrustwaveUS
Merchant One Inc. 07/11/2016 Information Exchange Inc.US
Merchant Partners (Innuity, Inc.) 10/28/2016 Information Exchange Inc.US
Mercury Payment Systems, Inc. (MPS) 01/21/2016 Optiv Security Inc.US
Meridian Enterprises Corporation 11/23/2015 ProtivitiUS
Merkle Response Management Group 06/24/2016 TrustwaveUS
MFR, LLC (Acquiropay) 08/24/2016 Deiteriy Company Ltd.Europe
MicroPayment AG 03/31/2016 usd AGEurope
Wednesday, November 16, 2016 Page 36 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Microsoft Dynamics Online Payment Services 05/31/2016 Verizon/CybertrustUS
Middle East Payment Services (MEPS) 06/15/2016 RandomStormSAMEA
Millennium Process Group, Inc. (Millennium 1 Solutions)
05/21/2016 TELUS Security SolutionsCanada
MilliKart Processing Center 04/08/2016 Jet InfosystemsEurope
Mindbody, Inc. 09/22/2016 Payment Software Company (PSC)US
Mint (Aust) Pty Ltd. 08/25/2016 Privasec Pty. LtdAsia Pacific
Mi-Pay Limited 08/03/2016 NCC GroupEurope
Mobil-Cash Europa Zrt. 01/27/2016 Cognosec GmbHEurope
Mobo Systems Inc. (Olo) 01/26/2016 SecurityMetricsUS
ModusLink Global Solutions, Inc. 07/22/2016 TrustwaveUS
MoldMediaCard SRL 12/30/2015 TrustwaveEurope
Mollie BV 06/28/2016 VOC-Consultancy BVEurope
Moneris Shared Cash Dispensing (SCD) and Payment Systems Infrastructure at the Royal Bank of Canada
07/04/2016 The Herjavec Group Inc.Canada
Moneris Solutions Corporation / Moneris Solutions, Inc.
07/15/2016 The Herjavec Group Inc.Canada
Monet+ a.s. 12/14/2015 Apersky Consulting LLCEurope
Monex Financial Services Ltd. 08/09/2016 TrustwaveEurope
Monexa Services, Inc. (formerly IP Applications, Inc.)
07/29/2016 IPSCanada
Monext - Acquiring by Monext 11/30/2015 XMCO PartnersEurope
Monext - Merchant Services (Payline, Payavenue, Tokenizer)
12/17/2015 XMCO PartnersEurope
Wednesday, November 16, 2016 Page 37 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Monext (Cards by Monext - Call Center) 12/17/2015 XMCO PartnersEurope
Monext (Cards by Monext) 04/22/2016 XMCO PartnersEurope
Money Movers Inc. 05/24/2016 Contextual Security Solutions, LLCUS
MoneyApps LLC 04/05/2016 Compliance Control Ltd.Europe
Moneytree ATM LLC (Digital Network Solutions)
07/25/2016 Information Exchange Inc.US
Motionsoft Inc. 03/31/2016 ControlCaseUS
Motivational Fulfillment & Logistics Services (Motivational Marketing Inc.)
02/26/2016 Tevora Business SolutionsUS
Mozido 12/16/2015 NDB Advisory LLCUS
Mozobi 09/01/2015 Foregenix LimitedEurope
mPAY24 GmbH 12/14/2015 Security Research & Consulting GmbHEurope
MPP Global Solutions 02/05/2016 NCC GroupEurope
Mswipe Technologies Pvt. Limited 12/25/2015 ControlCaseAsia Pacific
Multi Service Technology Solutions, Inc. 05/26/2016 TrustwaveUS
Multicarta Ltd. 09/30/2016 Compliance Control Ltd.Europe
Multifunctional Processing Company LLC 05/24/2016 Deiteriy Company Ltd.Europe
MyGate Communications (Pty) Ltd 12/22/2015 Sysnet Ltd.SAMEA
National Bankcard Services, Inc. 10/01/2015 RSM McGladrey, Inc.US
National Credit Cards (CJSC) 10/30/2015 NvisionGroupEurope
National Information Solutions Cooperative (NISC)
07/18/2016 TrustwaveUS
National Systems Corporation (QuikOrder, Inc.)
07/18/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 38 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Nationwide Payment Solutions, LLC 01/31/2016 ControlCaseUS
Nativa (formerly Banesco Holding Medios De Pago) (Nativa Panamá)
08/12/2016 1st Secure IT, LLCLatin Americ
Navitaire LLC. 06/15/2016 TrustwaveUS
NBCO Yandex.Money LLC 12/29/2015 Jet InfosystemsEurope
NBS Payment Solutions (Division of NBS Technologies, Inc.)
05/19/2016 Control Gap Inc.Canada
NCR - CP Gateway (formerly Radiant Systems - CP Gateway)
11/15/2015 Habif, Arogeti & Wynne, LLPUS
NCR Connected Payments 03/11/2016 Coalfire Systems, Inc.US
NCR CPOnline (formerly Radiant Systems - CP Online)
01/31/2016 Habif, Arogeti & Wynne, LLPUS
NCR SaaS Data Centers SecurePay 07/01/2016 ControlCaseUS
Nelix Transax LLC 09/11/2015 ControlScanUS
Nelnet Business Solutions (QuickPay) 03/31/2016 Coalfire Systems, Inc.US
Nelnet Transaction Solutions (CRYPTPAY) 07/16/2016 Coalfire Systems, Inc.US
Nepal Electronic Payment System Ltd. 08/11/2016 TrustwaveAsia Pacific
Nepal Investment Bank Limited 01/11/2016 TrustwaveAsia Pacific
Nepting SAS 10/19/2015 Security Research & Consulting GmbHEurope
NestPay Odeme Hizmetleri Anonim Sirketi 03/16/2016 Evolution LTDEurope
Net1 01/18/2016 TrustwaveSAMEA
NetCentriX Inc (TransVerse Systems LLC) 03/10/2016 Information Exchange Inc.US
Netcetera AG 12/03/2015 Adsigo AGEurope
Netcracker Technology Solutions Inc. 06/07/2016 Schellman & Company, Inc.US
Wednesday, November 16, 2016 Page 39 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
NetFortris (formerly Telekenex) 05/23/2016 TrustwaveUS
NetPay International Ltd. (Netpay Ltd) 12/19/2015 Comsec Consulting, Ltd.Europe
NetPay S.A.de C.V. 12/23/2015 ControlCaseLatin Americ
Nets Branch Norway 06/10/2016 Foregenix LimitedEurope
Nets Denmark A/S 09/08/2016 Foregenix LimitedEurope
Nets Estonia AS (previously Pankade Kaardikeskus AS)
12/14/2015 Foregenix LimitedEurope
Nets Finland Oy (formerly Manison Maksujärjestelmät Oy)
06/15/2016 Foregenix LimitedEurope
Nets Oy 06/10/2016 Foregenix LimitedEurope
Nets Oy - Netpak 06/14/2016 Foregenix LimitedEurope
NetSpend Corporation (Skylight Financial Inc.) 10/14/2016 Coalfire Systems, Inc.US
NetSuite Inc. 03/10/2016 TrustwaveUS
Network International – Egypt 03/31/2016 TrustwaveAsia Pacific
Network International, LLC (NETWORK Ae) 12/10/2015 M. Kuppuswamy PSG & Co.SAMEA
Network Merchants, LLC (Network Merchants Payment Gateway)
02/12/2016 TrustwaveUS
Newegg, Inc. 01/06/2016 TrustwaveUS
Newtek Merchant Solutions (Universal Processing Services of Wisconsin)
11/20/2015 SecurityMetricsUS
Nexcess.net, LLC 06/01/2016 Schellman & Company, Inc.US
NIC Services, LLC 10/07/2016 Coalfire Systems, Inc.US
NitroSell Ltd. 04/22/2016 TrustwaveEurope
Nochex Ltd 09/25/2015 RandomStormEurope
Wednesday, November 16, 2016 Page 40 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
North American Bancard, Inc. (TransGlobal Payment Systems, Wholesale Processing Club)
03/31/2016 TrustwaveUS
Novalnet AG Finanzdienstleistungsinstitut (BA)
08/17/2016 SISA Information Security Pvt. Ltd.Europe
nTrust Corp. 12/08/2015 ControlCaseAsia Pacific
NTT Data (Thailand) Co., Ltd (formerly Accellence (Thailand) Ltd.)
04/22/2016 Shimpla Pte. Ltd.Asia Pacific
NTT DATA Corporation - Cards & Payments Services Division IT Services & Payments Services Sector (CDS System)
10/30/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, Cards & Payments Services Division - IT Services & Payments Services Sector (BiueGate/OricoPayment System)
05/31/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA Corporation, Cards & Payments Services Division, IT Services & Payments Services Sector (Credit Receipt Proxy Service)
06/30/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, Cards and Payments Services Division (CAFIS Paper Slip Management Service) (formerly CAFIS Sales Slip Storage System)
12/04/2015 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector - Cards and Payments Services Division (inControl GW)
05/13/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector - Cards and Payments Services Division (VCN Management Center)
05/18/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector Cards & Payments Services Division (ACS)
07/29/2016 BSI Management Systems Japan K.K.Asia Pacific
Wednesday, November 16, 2016 Page 41 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
NTT DATA CORPORATION, IT Services & Payments Services Sector Cards & Payments Services Division (Petroleum Industry Shared Authorization Center)
09/24/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector Cards & Payments Services Division (VM-ATM System)
09/15/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector Cards and Payments Services Division (CAFIS System)
08/24/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA Corporation, IT Services & Payments Services Sector Cards and Payments Services Division (INFOX-NET)
06/09/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA Corporation, IT Services & Payments Services Sector Cards and Payments Services Division (Pastel Port)
04/22/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector, Cards & Payments Services Division (CMS)
06/21/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA Corporation, IT Services & Payments Services Sector, Cards & Payments Services Division (GloablGEAR)
06/21/2016 BSI Management Systems Japan K.K.Asia Pacific
NTT DATA CORPORATION, IT Services & Payments Services Sector, Cards & Payments Services Division (Multiple Currency Settlement Service)
06/21/2016 BSI Management Systems Japan K.K.Asia Pacific
Nuance Communications, Inc. 01/18/2016 TrustwaveUS
Oakland County 08/08/2016 Above SecurityUS
Oceanpayment Co., Limited. 07/11/2016 atsec (Beijing) Information Technology CAsia Pacific
Official Payments - EBPP (formerly ACI Worldwide, Inc. - eCommerce division - Princeton)
08/31/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 42 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
OK Processing Ltd (OK Ltd.) 09/30/2016 InformzaschitaEurope
Oltio (PTY) Ltd. 09/29/2015 TrustwaveSAMEA
Omney 03/04/2016 Payment Software Company (PSC)US
OmniTicket, Network, Ltd. 12/01/2015 CompliancePoint, Inc.US
One Mobikwik Systems Pvt. Ltd. (ZAAK EPayment Services Private Limited)
06/26/2016 Network Intelligence India Pvt. Ltd.Asia Pacific
One, Inc. 11/14/2015 Sikich LLP (403 Labs)US
Onelya, LLC 04/27/2016 Digital SecurityEurope
Online Payments LLC (PlatBox) 09/14/2016 Digital SecurityEurope
Online Tech, LLC 09/22/2016 UHY Advisors TX, LLCUS
Open joint stock company "BANK URALSIB" 07/27/2016 InformzaschitaEurope
OPENTECH Software Engineering s.r.l. 11/12/2015 KIMA Projects & ServicesEurope
Operadora de Tarjetas de Credito Nexus S.A. 08/08/2016 TrustwaveLatin Americ
Optomany Limited 09/26/2016 Foregenix LimitedEurope
OPUS card systems 02/16/2016 Nettitude Ltd.US
Oracle America (Oracle RightNow (Commercial PCI))
06/30/2016 Schellman & Company, Inc.US
Oracle Cloud Commerce 08/31/2016 Coalfire Systems, Inc.US
Oracle Commerce@Oracle and Commerce@AT&T
08/31/2016 Coalfire Systems, Inc.US
Oracle Hospitality Cloud Hosting APAC (formerly Micros Fidelio Asia Pacific)
03/24/2016 Coalfire Systems, Inc.Asia Pacific
Oracle Managed Cloud Services (OMCS) 08/29/2016 Coalfire Systems, Inc.US
Oracle Retail Cloud Hosting North America 10/09/2015 Coalfire Systems, Inc.US
Wednesday, November 16, 2016 Page 43 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Oracle USA, Inc. - E-Billing 08/31/2016 Coalfire Systems, Inc.US
Orbitall Servicos e Processamento de Informacoes Comerciais Ltda
10/23/2015 Cipher InformaticaLatin Americ
OrderMotion, Inc. 08/09/2016 TrustwaveUS
OrderTalk, Inc. 08/25/2016 A-Lign Security and Compliance ServicesUS
OrthoBanc, Inc. 08/31/2015 Sword & Shield Enterprise Security, Inc.US
Oy Samlink Ab 12/16/2015 NSense OyEurope
PAAY 11/12/2015 True Digital Security, Inc.US
Pace Payment Systems (Century Bankcard Services)
02/29/2016 Information Exchange Inc.US
Paciolan Inc. 12/31/2015 TrustwaveUS
Pago Merchant Solutions L.P. 09/06/2016 Sysnet Ltd.Europe
Palm Coast Data and Kable News Company 01/05/2016 K3DES LLCUS
PAMS Lunchroom LLC 01/22/2016 TrustwaveUS
Panasonic Avionics Corporation 02/09/2016 DirectDefenseUS
Paramount Acceptance (Federal Recovery Systems Inc.)
06/09/2016 SecurityMetricsUS
Parkeon 07/13/2016 XMCO PartnersEurope
Parkmobile, LLC (formerly Parkmobile USA, Inc.)
12/15/2015 Habif, Arogeti & Wynne, LLPUS
Passport Parking, Inc. 09/28/2016 A-Lign Security and Compliance ServicesUS
PatientPay 06/30/2016 A-Lign Security and Compliance ServicesUS
Patron Manager, LLC 03/04/2016 Optiv Security Inc.US
Pay Now Tanzania Limited 11/30/2015 Kyte Consultants, Ltd.SAMEA
Wednesday, November 16, 2016 Page 44 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
PAY.ON AG 06/22/2016 Adsigo AGEurope
Payair Technologies AB 02/11/2016 24 Solutions ABEurope
PayAnywhere, LLC 06/14/2016 TrustwaveUS
PayByPhone Technologies, Inc. 12/09/2015 Kirkpatrick Price, Inc. dba Raven EyeCanada
PayClip, Inc. 09/15/2016 K3DES LLCUS
PayConnexion – JP Morgan Chase 03/18/2016 Experis Finance US LLCUS
Paydesign (formerly Digital Check, Inc.) 12/28/2015 International Certificate Authority of Mgt Asia Pacific
Paydiant Inc. (Paypal) 12/23/2015 Payment Software Company (PSC)US
Payer Financial Services AB 09/28/2016 Sentor Managed Security ServicesEurope
PayEx Holding AB (formerly PayEx Solutions AS (Payex IPSP))
10/14/2016 NTT Security Ltd.Europe
PayFabric (Nodus Technologies, Inc.) 01/06/2016 Dara SecurityUS
PayFast (Pty) Ltd. 12/18/2015 Foregenix LimitedSAMEA
Payflex Systems USA, Inc. 12/02/2015 TrustwaveUS
PayGate (Pty) Ltd 11/23/2015 Sysnet Ltd.SAMEA
PayItEasy BVBA 02/19/2016 FortytwoEurope
PayItSimple Ltd. (Splitit USA Inc, Splitit Capital Inc, Splitit UK Ltd, Splitit Capital UK Ltd)
11/28/2015 GRSee ConsultingEurope
Payius AB 12/14/2015 Sysnet Ltd.Europe
PayJunction (Messiahic, Inc.) 04/22/2016 Payment Software Company (PSC)US
PayLease, LLC 03/07/2016 SecurityMetricsUS
Payler EU, CU; Payler LLC 05/10/2016 Cognit Consult, UABEurope
Wednesday, November 16, 2016 Page 45 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Paylink SH.A 07/13/2016 Security Research & Consulting GmbHEurope
PAYM8 (PTY) Ltd 10/24/2016 TrustwaveSAMEA
PayMate India Private Limited 11/25/2015 ControlCaseSAMEA
Payment Data Systems Inc. (Ficentive) 05/06/2016 Information Exchange Inc.US
Payment Express Limited (Australia, UK, USA)
10/10/2016 Confide Ltd.Asia Pacific
Payment Express Ltd. (Mauritius) 02/04/2016 Sysnet Ltd.SAMEA
Payment Gateway Solutions Pvt. Ltd. (PaymentZ)
08/01/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Payment Logistics, LLC 01/31/2016 K3DES LLCUS
Payment Processing Partners, Inc. (ChargeItPro)
09/21/2016 Dara SecurityUS
Payment Processing, Inc. (PPI) (A wholy owned subsidiary of Global Payments Direct, Inc.)
04/25/2016 Payment Software Company (PSC)US
Payment Services Interactive Gateway (PSIGate)
08/22/2016 TrustwaveCanada
PaymentSpring, Inc. 08/06/2016 SecurityMetricsUS
Paymentus Corporation 10/25/2016 K3DES LLCUS
PaymentWall B.V. 08/11/2016 Sysnet Ltd.Europe
Paymentworld LLC 12/28/2015 Dara SecurityUS
Paymetric, Inc. 07/13/2016 TrustwaveUS
Paynamics Technologies Inc. 10/12/2016 Crossbow Labs LLPAsia Pacific
Paynear Solutions Private Limited 03/10/2016 TrustwaveAsia Pacific
Paynova AB 06/14/2016 NTT Security Ltd.Europe
Wednesday, November 16, 2016 Page 46 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Payone GmbH & Co. KG 12/02/2015 usd AGEurope
PayPal, Inc. 12/03/2015 K3DES LLCUS
Paysafe Group PLC (formerly Optimal/Netbanx)
07/13/2016 TrustwaveCanada
Paysafe Group Plc. (Skrill Limited, Paysafecard) (formerly Next Generation Payment Limited)
05/23/2016 SecurityMetricsEurope
Paysafe Group Plc. (US) (formerly Meritus Payment Solutions)
02/19/2016 Sikich LLP (403 Labs)US
Payscout, Inc. 11/20/2015 Aeris SecureUS
PaySimple 07/16/2016 Coalfire Systems, Inc.US
PaySpan, Inc. 11/25/2015 Schellman & Company, Inc.US
PaySquare SE (formerly Montrada GmbH) 06/30/2016 usd AGEurope
PayTel S.A. 06/09/2016 IBM Internet Security Systems (ISS)Europe
Paythru Ltd. (formerly TxtTrans) 03/14/2016 O-C GroupEurope
Paytpv Online S.L 09/18/2015 S21sec Gestion, S.A.Europe
PayTrace, Inc. 10/26/2016 SecurityMetricsUS
Paytrek Ödeme Kuruluşu Hizmetleri A.Ş. 10/14/2015 TrustwaveEurope
PayU Ödeme Kurulusu u A. (PayU Turkey) 07/12/2016 Sysnet Ltd.Europe
PayU Payment Solutions (Pty) Ltd. 10/08/2015 Sysnet Ltd.SAMEA
PayU Romania (formerly GeCAD ePayment International SA)
05/19/2016 Sysnet Ltd.Europe
Paywire, Inc. 02/08/2016 Dara SecurityUS
Paywizard PLC 11/23/2015 AmbersailEurope
PayXpert 06/28/2016 XMCO PartnersEurope
Wednesday, November 16, 2016 Page 47 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Payzone Ireland Ltd. 11/14/2015 NTT Security Ltd.Europe
Payzone Nordic AB 06/17/2016 Cybercom GroupEurope
PCIPay, LLC 09/09/2015 Coalfire Systems, Inc.US
People Tech Latin S.A.A. 02/12/2016 ControlCaseLatin Americ
PetaFuel GmbH 12/18/2015 usd AGEurope
Phoenix Informatica Bancaria S.p.A. 12/15/2015 Verizon/CybertrustEurope
Phoenix Managed Networks LLC (PMN) 09/09/2016 Dara SecurityUS
Phoenix Nap LLC 01/31/2016 Coalfire Systems, Inc.US
Phreesia 01/15/2016 ControlScanUS
Pil.dk/Quickpay.dk (Pil-Professionelle Internetlosninger Aps.)
04/12/2016 FortConsult A/SEurope
Piraeus Bank S.A. 03/23/2016 TrustwaveEurope
Pivotal Payments 02/15/2016 SecurityMetricsCanada
PJSC ROSSIYSKY CAPITAL 08/30/2016 Compliance Control Ltd.Europe
Planet Payment, Inc. (Planet Group, Inc.) 12/28/2015 SISA Information Security Pvt. Ltd.US
Platina Commercial Bank 10/22/2015 Compliance Control Ltd.Europe
Plug’n Pay Technologies (Plug’n Pay) 01/26/2016 Megaplanit, LLCUS
Pluscard GmbH 06/10/2016 usd AGEurope
PMTsolutions AG 11/16/2015 Adsigo AGEurope
Portmone.com (LLC "Financial Company IBC")
12/15/2015 Security Research & Consulting GmbHEurope
Posatel Inc. 03/04/2016 UbitrakCanada
POST Integrations, Inc. 02/15/2016 Verizon/CybertrustUS
Wednesday, November 16, 2016 Page 48 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
PostFinance AG (formerly Swiss Post PostFinance)
02/12/2016 NTT Security Ltd.Europe
Preferred Health Technology 02/11/2016 TrustwaveUS
Premier Consulting Ltd. (A1Payments.com) 05/25/2016 Sysnet Ltd.SAMEA
Premier Switch Solutions S.C. (Wondmagegn Hunde)
09/15/2016 ControlCaseSAMEA
Premier Technologies Pty Ltd. 06/22/2016 UL Transaction Security PTY Ltd.Asia Pacific
PrePay Technologies (Prepay Solutions) 06/09/2016 Foregenix LimitedEurope
Primoris Services, LLC 07/14/2016 SecurityMetricsUS
Priority Fulfillment Services, Inc. (PFSWeb, Inc.)
07/27/2016 Verizon/CybertrustUS
Priority Payment Systems (PPS) LLC 09/27/2016 Payment Software Company (PSC)US
Procard LTD 04/25/2016 Sysnet Ltd.Europe
Procesos de Medios de Pagos S.A 05/17/2016 1st Secure IT, LLCLatin Americ
Processing.com, LLC (Cardconcepts Europe Ltd.)
10/16/2016 Intersec WorldwideUS
Promisepay Pty Ltd. 02/25/2016 PCI Consulting Australia PTY, LTDAsia Pacific
Promoción y Operación, S.A de C.V. (Prosa) 08/22/2016 Sikich LLP (403 Labs)Latin Americ
ProPay, Inc 07/08/2016 Cadence AssuranceUS
Provus Service Provider S.A. 09/26/2016 TrustwaveEurope
PSC Ukrainian Financial Network (UFN) 06/30/2016 Sysnet Ltd.Europe
PSCU Financial Services, Inc. 02/28/2016 Tevora Business SolutionsUS
PT Multi Adiprakarasa Manunggal ("Kartuku"), Jakarta, Indonesia
10/17/2016 ControlCaseAsia Pacific
PT Nusa Satu Inti Artha (DOKU) 10/18/2016 TUV Rheinland Indonesia, PTSAMEA
Wednesday, November 16, 2016 Page 49 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
PULSE EFT 07/05/2016 K3DES LLCUS
PXP Solutions Inc - (fka: Servebase Computers Limited)
12/19/2015 Foregenix LimitedEurope
Qgiv, Inc. 08/12/2016 A-Lign Security and Compliance ServicesUS
QPAY India Pvt. Ltd. 04/11/2016 ControlCaseAsia Pacific
QS/1 Data Systems (JM Smith Corporation) 06/08/2016 TrustwaveUS
Qualpay, Inc. 10/31/2016 Coalfire Systems, Inc.US
Quantum Services LLC (Quantum Gateway) 08/18/2016 A-Lign Security and Compliance ServicesUS
Quick Check Ltd (MyCheck) 09/09/2016 GRSee ConsultingEurope
Quipu GmbH 06/02/2016 TUV SUD Management Service GmbHEurope
Rapid Investments 02/29/2016 ControlCaseUS
Razorpay Software Pvt. Ltd. 10/14/2016 ControlCaseAsia Pacific
RBK Money Limited 08/11/2016 Security Research & Consulting GmbHEurope
Real Time Ordering 01/18/2016 A-Lign Security and Compliance ServicesUS
Realex Payments (Pay and Shop Ltd) 11/01/2015 Payment Software Company (PSC)Europe
RealPage 06/21/2016 Optiv Security Inc.US
Recurly, Inc. 03/15/2016 Coalfire Systems, Inc.US
Red Link S.A. 02/12/2016 CYBSEC Security SystemsLatin Americ
Redbanc S.A. 05/26/2016 TrustwaveLatin Americ
Redsýs Servicios de Procesamiento S.L. 12/10/2015 S21sec Gestion, S.A.Europe
Reiknistofa Bankanna hf. 11/19/2015 TrustwaveEurope
Reliance Payment Solutions Ltd (Reliance Jio Money)
01/22/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Wednesday, November 16, 2016 Page 50 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Reliant Security 12/31/2015 Coalfire Systems, Inc.US
Retail inMotion (Paygate Services) 05/05/2016 Espion LTDEurope
Retiarius, GMBH 02/12/2016 Kyte Consultants, Ltd.Europe
Rev Worldwide, Inc. (formerly MPOWER Labs (Mango Financial, Inc.))
10/27/2016 Certify Audit Services, Inc.US
Revention, Inc. 11/30/2015 A-Lign Security and Compliance ServicesUS
Rietumu Banka (DECTA) 11/07/2016 FortConsult A/SEurope
Roam Data, Inc. (Ingenico Mobile Solutions) 10/10/2016 Dara SecurityUS
RocketGate, LLC 10/08/2015 Sikich LLP (403 Labs)US
Romcard S.A. 11/17/2015 TrustwaveEurope
ROYAL GATE Inc. 03/25/2016 BSI Management Systems Japan K.K.Asia Pacific
RR Donnelley Global Document Solutions (GDS)
03/07/2016 Solutionary, Inc.US
RS2 Smart Processing Limited (BankWorks Service Partners (BW-SP)
04/15/2016 O-C GroupEurope
RSA - 3DSecure Environment (EMEA) 08/31/2016 Verizon/CybertrustSAMEA
RSA - 3DSecure Environment (US) 08/31/2016 Verizon/CybertrustUS
RSM 2000 Limited 07/15/2016 Foregenix LimitedEurope
RT Lawrence Corporation 03/31/2016 ControlCaseUS
Rucard Ltd. 10/24/2016 Compliance Control Ltd.Europe
Ruffalo Noel Levitz, LLC 08/18/2016 Coalfire Systems, Inc.US
RUNISO (A Claranet Group Company) 04/13/2016 XMCO PartnersEurope
Rural Servicios Informáticos 07/15/2016 S21sec Gestion, S.A.Europe
Russian Standard Bank 08/05/2016 Jet InfosystemsEurope
Wednesday, November 16, 2016 Page 51 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Rycom, Inc. 12/08/2015 TrustwaveCanada
S&C Constructores de Sistemas S.A. De C.V. 12/18/2015 S21sec Gestion, S.A.Latin Americ
SAB Services 11/03/2015 Verizon/CybertrustEurope
Sabre GLBL, Inc. (Sabre Airline Solutions; Sabre Travel Network; Prisim Group, Inc.; Sabre International, BV)
09/28/2016 Optiv Security Inc.US
Sabre GLBL, Inc. (Sabre Hospitality Solutions, Sabre International BV)
09/28/2016 Optiv Security Inc.US
SafeCharge International Group Ltd. (Guernsey)
12/10/2015 Comsec Consulting, Ltd.Europe
SafeCharge International Group Ltd. (Safecharge Card Services)
12/15/2015 NTT Security Ltd.Europe
Sage Pay Europe Limited 06/15/2016 Coalfire Systems, Inc.Europe
Sage Pay South Africa 03/14/2016 TrustwaveSAMEA
Sage Payment Solutions 07/15/2016 Verizon/CybertrustUS
SaleServiceSolutions (LTD) 03/17/2016 Security Research & Consulting GmbHEurope
Salesforce.com, Inc. 07/22/2016 Schellman & Company, Inc.US
Salsa Labs, Inc. 08/23/2016 ControlCaseUS
Salucro Healthcare Solutions, LLC 01/22/2016 Aeris SecureUS
ScaleFunder - Ruffalo Noel Levitz Platform (RNL)
08/02/2016 Coalfire Systems, Inc.US
ScanPay ApS 03/03/2016 FortConsult A/SEurope
ScholarChip Card LLC 07/06/2016 A-Lign Security and Compliance ServicesUS
Sdirekt GmbH 10/28/2016 Security Research & Consulting GmbHEurope
SeatAdvisor, Inc. 08/31/2016 Tevora Business SolutionsUS
Wednesday, November 16, 2016 Page 52 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Secure Cloud Systems 07/18/2016 TrustwaveUS
Secure Payments LLC (iSecure Payments) 04/01/2016 Aeris SecureUS
SecureTrading Ltd. 10/07/2016 NCC GroupEurope
SegPay Inc. (SegPay Ltd.) 09/01/2016 Enterprise Risk ManagementUS
Seita Technologies Oy 06/15/2016 NSense OyEurope
Select Bankcard LLC 10/13/2016 K3DES LLCUS
Senjo Payment Europe S.A. 06/27/2016 SecuriCentrixEurope
Seroph International (CY) Limited (AlgoCharge, AlgoPay, FermainPay)
09/30/2016 GRSee ConsultingEurope
ServiceU Corporation, part of Active Network 07/31/2016 K3DES LLCUS
Servicios Electronicos Globales, S.A. de C.V.(eGlobal)
10/14/2016 1st Secure IT, LLCLatin Americ
Servodata GmbH 12/11/2015 usd AGEurope
Setcom 01/22/2016 SecuriCentrixSAMEA
Setrafi (CentralPay / NordPay) 10/14/2015 Verizon/CybertrustEurope
Shanghai Masapay Information Technology Co., Ltd. (Branded as “Masapay”)
12/27/2015 atsec (Beijing) Information Technology CAsia Pacific
Shazam Inc. (ITS Inc.) 12/21/2015 TrustwaveUS
Shenzhen GleePay Information Technology Co., Ltd. (Branded as “GleePay”)
12/29/2015 atsec (Beijing) Information Technology CAsia Pacific
ShenZhen GlobeBill Technology CO., Ltd (Branded as “GBPAY”)
01/11/2016 atsec (Beijing) Information Technology CAsia Pacific
Shenzhen Tenpay Technology Company Limited (Branded as “Tenpay”)
01/27/2016 atsec (Beijing) Information Technology CAsia Pacific
Shift4 Corporation 05/31/2016 Dara SecurityUS
Wednesday, November 16, 2016 Page 53 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Shopify, Inc. (Shopify Payments (Canada Inc. & Shopify Payments (USA) Inc.))
08/01/2016 Sikich LLP (403 Labs)Canada
SIA Central Europe cPlc (formerly GIRO Bankcard cPlc)
04/26/2016 Apersky Consulting LLCEurope
SIA PaySpace 04/20/2016 Sysnet Ltd.Europe
SIA S.p.A. (formerly SIA-SSB) 06/30/2016 Verizon/CybertrustEurope
SIA Transact Pro (TRANSACT PRO, SKYPETROL TRUST LIMITED)
01/14/2016 Cognit Consult, UABEurope
Sigma Payment Solutions (formerly Sigma Payment Processing)
05/16/2016 Information Exchange Inc.US
SignaPay LTD 09/30/2015 CompliancePoint, Inc.US
Signature Card Services (CKC Holdings, Inc.) 04/28/2016 SecurityMetricsUS
SITEL Worldwide Corporation 06/23/2016 Coalfire Systems, Inc.US
SIX Payment Services (Austria) GmbH 03/07/2016 Adsigo AGEurope
SIX Payment Services AG 04/14/2016 Adsigo AGEurope
SIX Payment Services Europe SA 07/14/2016 NTT Security Ltd.Europe
Slim CD, Inc. 02/04/2016 Dara SecurityUS
Smart Business Technology 09/04/2015 CompliancePoint, Inc.US
Smart e-Money, Inc. 12/25/2015 ControlCaseAsia Pacific
SmartAction Company, LLC (SmartAction) 11/01/2016 Tevora Business SolutionsUS
Smartcardlink (SCL) 06/29/2016 Compliance Control Ltd.Europe
SmartEtailing Inc. 09/30/2015 Aeris SecureUS
Sociedade Interbancária de Serviços, S.A. (SIBS)
05/29/2016 FortConsult A/SEurope
Société Monétique Tunisie (SMT) 08/30/2016 ControlCaseSAMEA
Wednesday, November 16, 2016 Page 54 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Softrek Corporation 04/30/2016 Freed Maxick CPAsUS
Softvoyage Inc. 12/23/2015 UbitrakCanada
Soldo Financial Services Limited 03/31/2016 CryptoNet SrlEurope
SoNet, spol. S.r.o. 09/15/2015 NTT Security Ltd.Europe
South African Bank Services Company Limited - Bankserv
10/11/2016 TrustwaveSAMEA
Southeastern Data Cooperative Inc. 04/28/2016 SuneraUS
SparrowOne, LLC 01/29/2016 K3DES LLCUS
Speed Commerce, Inc. (formerly SpeedFC, Inc.)
12/11/2015 Payment Software Company (PSC)US
Spektrix Ltd. 06/21/2016 FortConsult A/SEurope
Spindle, Inc. 11/13/2015 Megaplanit, LLCUS
Spreedly, Inc. 02/12/2016 Sikich LLP (403 Labs)US
Square, Inc. 05/13/2016 Coalfire Systems, Inc.US
SR Global Solutions Pty Ltd (trading as Merchant Warrior)
11/06/2015 Hivint Pty. LtdAsia Pacific
Stafford Associates Computer Specialists, Inc. 12/11/2015 CrimsonSecurityUS
Sterling Payment Technologies, LLC 04/14/2016 TrustwaveUS
StoneEagle Services, Inc. 11/02/2015 Kirkpatrick Price, Inc. dba Raven EyeUS
Stored Value Cards, Inc. (Numi Financial) 01/06/2016 Online EnterprisesUS
StoreFinancial Services, LLC 12/31/2015 Coalfire Systems, Inc.US
StreamPay SIA 01/29/2016 Kyte Consultants, Ltd.Europe
Stripe, Inc. 03/10/2016 NCC GroupUS
SuitePay LLC 11/04/2015 Megaplanit, LLCUS
Wednesday, November 16, 2016 Page 55 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Sumitomo Mitsui Card Company, Ltd. 09/27/2015 International Certificate Authority of Mgt Asia Pacific
SumUp Payments Limited 04/15/2016 usd AGEurope
SunGard Availability Services – Managed Services
02/01/2016 Schellman & Company, Inc.US
SunGard Public Sector 04/27/2016 SecurityMetricsUS
Superior Financial Systems, Inc. 09/30/2015 TrustwaveUS
SuperValu 10/29/2015 AT&T Consulting Solutions, Inc. (VerisignUS
Sutherland Global Services Inc (Symantec Services)
09/30/2016 ControlCaseUS
Svea Ekonomi AB 06/25/2016 24 Solutions ABEurope
SVM Acquisition I, LLC (1to1 Card) (formerly Sunburst Innovations, Inc.)
01/31/2016 PC Connection, Inc.US
Swedbank AB - Acquiring Services 12/30/2015 TrustwaveEurope
Swift Prepaid Solutions, Inc. 07/22/2016 Secure State ConsultingUS
Swipely 04/29/2016 Compass IT ComplianceUS
Swiss Post Solutions GmbH 10/28/2016 Security Research & Consulting GmbHEurope
Switch Commerce LLC 10/27/2016 Schellman & Company, Inc.US
Switchfly Inc. (formerly ezRez Software, Inc.) 01/19/2016 Payment Software Company (PSC)US
Synchrony Bank (Synchrony Financial) 08/31/2016 Verizon/CybertrustUS
SysPay Limited 12/15/2015 NTT Security Ltd.Europe
Systems East, Inc. 05/11/2016 Payment Software Company (PSC)US
T. Garanti Bankası A.Ş. (Garanti Bank Technology Center)
06/14/2016 Biznet Information SystemsEurope
T2 Systems Canada Inc. (formerly Digital Payment Technologies Corp.)
05/31/2016 Pondurance, LLCCanada
Wednesday, November 16, 2016 Page 56 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
T2 Systems, Inc. 02/08/2016 TrustwaveUS
Target Servicing 08/11/2016 Coalfire Systems, Inc.US
TAS Iberia 10/12/2015 NTT Security Ltd.Europe
TAS Link LLC 05/30/2016 BMS Consulting LLCEurope
Technoactivity, S.L. 04/21/2016 SIA GrupoEurope
Technology Shared Services For Africa 10/23/2015 DataprotectSAMEA
TechProcess Payment Services Limited 01/20/2016 ControlCaseAsia Pacific
Tecnicard, Inc. 05/16/2016 1st Secure IT, LLCUS
TECS Telecommunication & E-commerce Solutions GmbH
10/12/2015 Adsigo AGEurope
TelecityGroup France 11/12/2015 TrustwaveEurope
Teleflora, LLC 03/03/2016 TrustwaveUS
Telefonica Soluciones de Informatica y Comunicaciones de Espana, S.A.U (Co-Location Power and Physical Location)
06/06/2016 S21sec Gestion, S.A.Europe
Telefonica Soluciones de Informatica y Comunicaciones de Espana, S.A.U (Payment Gateway/Switch)
06/06/2016 S21sec Gestion, S.A.Europe
Telefonica USA Inc. 06/07/2016 Internet Security Auditors, S.L.US
Teleformix 12/22/2015 TrustwaveUS
Telered S.A. 09/08/2016 TrustwaveLatin Americ
Teletik Services BV (Multisafepay) 03/01/2016 VOC-Consultancy BVEurope
Telr 06/06/2016 ControlCaseSAMEA
Telrock Systems Limited (formerly Telrock Communications Ltd.)
12/14/2015 7Safe Information SecurityEurope
Wednesday, November 16, 2016 Page 57 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Tenerum, LLC 09/09/2016 Schellman & Company, Inc.US
Teranet, Inc. 07/14/2016 TrustwaveCanada
Tessitura Networks, Inc. 09/11/2015 TrustwaveUS
The Logic Group 07/27/2016 Verizon/CybertrustEurope
The Macaluso Group 10/14/2015 KalioTek, Inc.US
The Members Group 01/08/2016 RSM McGladrey, Inc.US
The Minacs Group Inc. (formerly Aditya Birla Minacs Worldwide Inc.)
10/01/2016 ControlCaseCanada
The Shared Electronic Banking Services Company (K.S.C.C) - KNET
01/05/2016 ControlCaseSAMEA
Thumbzup Innovations Pty Ltd. 07/08/2016 TrustwaveAsia Pacific
TIBCO Mashery (TIBCO Software Inc.) (formerly Mashery Inc., an Intel Company)
08/31/2016 Online EnterprisesUS
Tillster (Formerly EMN8) 11/25/2015 Tevora Business SolutionsUS
Time Customer Service, Inc. 06/30/2016 NTT Security Ltd.US
Time Inc. International Fulfilment Services B.V. (formerly Time Warner Publishing BV (TW4 Fulfilment Services))
08/11/2016 NTT Security Ltd.Europe
Tix, Inc. 10/06/2016 Compass IT ComplianceUS
TK Keith Company (Primax Payment Systems)
07/02/2016 Verizon/CybertrustUS
TNS Smart Network Inc. (NRT Technologies Inc., NRT Technology Corp., TNS Smart Network USA Inc.)
02/29/2016 TrustwaveCanada
TokenEX 10/04/2016 Foresite MSP, LLCUS
Tokheim Belgium NV 11/30/2015 Sysnet Ltd.Europe
Wednesday, November 16, 2016 Page 58 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Total Card, Inc. 12/31/2015 Tech Lock Inc.US
Total Merchant Services 02/19/2016 Information Exchange Inc.US
TouchNet Information Systems, Inc. 04/20/2016 Coalfire Systems, Inc.US
TradeGlobal (formerly Netrada North America, Fulfillment Technologies (Filltek))
02/23/2016 Secure State ConsultingUS
Transact elektronische Zahlungssysteme GmbH
05/09/2016 Security Research & Consulting GmbHEurope
Transact24 Limited 01/23/2016 Evolution LTDAsia Pacific
Transaction Junction Pty Ltd. 03/30/2016 SecuriCentrixSAMEA
Transaction Network Services (TNS) - Acquiring and Issuing
09/02/2016 TrustwaveEurope
Transaction Network Services (TNS) - Global Connectivity and TNSPay Mobile
06/06/2016 TrustwaveUS
Transaction Network Services (TNS) – TNSPay Direct and Managed POS Encryption
09/12/2016 TrustwaveUS
Transaction Network Services (TNS) - Transpoll and Crypto-hub
09/02/2016 TrustwaveEurope
Transaction Processing Partners 10/14/2016 Information Exchange Inc.US
Transaction Services (TRXServices) 11/13/2016 Aeris SecureUS
Transactis, Inc. 09/13/2016 SecurityMetricsUS
Transactium Limited 02/05/2016 Kyte Consultants, Ltd.Europe
Transbank S.A. 10/19/2016 TrustwaveLatin Americ
TransCard, LLC 06/10/2016 TrustwaveUS
TransPerfect Translations International Inc. (Translations.com)
12/15/2015 Sikich LLP (403 Labs)US
TransUnion Consumer Interactive, Inc. 09/29/2016 SecurityMetricsUS
Wednesday, November 16, 2016 Page 59 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Transverse 04/15/2016 Solutionary, Inc.US
Transworld Systems, Inc. (TSI) 05/10/2016 Payment Software Company (PSC)US
Travelex Outsourcing Pty Ltd. 11/19/2015 TrustwaveAsia Pacific
Triangle Media Corp (Triangle Payments) 10/21/2015 TrustwaveUS
Tridata, Inc. - Datalink Bancard Services 07/19/2016 TrustwaveUS
Trisept Solutions, Inc. 12/24/2015 TrustwaveUS
TriSource Solutions (formerly Nobel Electronic Transfer, LLC)
10/21/2016 Coalfire Systems, Inc.US
Truition, Inc (a division of Aptean) 08/05/2016 FortrexUS
TrustCommerce (TCSP) 06/15/2016 Payment Software Company (PSC)US
Trustpay Global 09/15/2016 TrustwaveEurope
TSD Rental, LLC 05/03/2016 RSM McGladrey, Inc.US
TSYS (Issuing Processing) 01/13/2016 Coalfire Systems, Inc.US
TSYS Acquiring Solutions 04/04/2016 Coalfire Systems, Inc.US
TSYS International Core 09/11/2016 Coalfire Systems, Inc.Europe
TSYS International Prime 09/11/2016 Coalfire Systems, Inc.US
TSYS Managed Services - Issuing 12/29/2015 Coalfire Systems, Inc.US
TSYS Managed Services EMEA Ltd. 11/20/2015 Coalfire Systems, Inc.Europe
TSYS Output Services / TSYS DDS 01/28/2016 Coalfire Systems, Inc.US
Twin Oaks Software Development, Inc. 03/28/2016 Payment Software Company (PSC)US
Tyler Technologies, Inc. 10/21/2016 IBM Internet Security Systems (ISS)US
U.S. Bank - Elan Financial Services - Core Services
04/13/2016 Verizon/CybertrustUS
Wednesday, November 16, 2016 Page 60 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
U.S. Bank E-Payment (Epay) and E-Disbursement Services (EDS)
01/27/2016 Verizon/CybertrustUS
U.S. Payments, LLC (Paysite) 12/15/2015 Sikich LLP (403 Labs)US
Ubiquity Global Services, Inc. (US, LAC, AP) 05/18/2016 ControlCaseUS
UBS Card Center AG 10/14/2015 NCC GroupEurope
UC Card Co., Ltd. 12/18/2015 BSI Management Systems Japan K.K.Asia Pacific
UCS-Solutions (Pty) Ltd. 04/22/2016 Galix Networking Pty. Ltd.SAMEA
Ukrainian Processing Center (UPC) 05/25/2016 Security Research & Consulting GmbHEurope
Ultracash Technologies Pvt. Ltd 05/20/2016 SISA Information Security Pvt. Ltd.Asia Pacific
UMS Banking (CA) 04/29/2016 SecurityMetricsUS
Unibanca S.A. 07/29/2016 ControlCaseLatin Americ
Unified Payment Services Ltd. (ValuCard Nigeria Ltd.)
09/30/2015 TrustwaveSAMEA
Union Bancaire pour le Commerce et l'Industrie
08/08/2016 ControlCaseSAMEA
UniRush, LLC 08/08/2016 K3DES LLCUS
United Bank Card (Harbortouch) 10/18/2016 Information Exchange Inc.US
United Card Service (UCS) 05/13/2016 Compliance Control Ltd.Europe
United Merchant Services, Inc. (UMS) 02/03/2016 TrustwaveUS
UniteU Technologies, Inc. 01/15/2016 SecurityMetricsUS
Universal Data Centre (iPay.ua) 11/30/2015 Sysnet Ltd.Europe
Universal Information Technologies Ltd. (Plategka)
01/25/2016 Sysnet Ltd.Europe
Universal Money Centers Inc. 12/09/2015 Information Exchange Inc.US
Wednesday, November 16, 2016 Page 61 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Universal Payment Gateway (UPG) 12/11/2015 SecuriCentrixEurope
uPaid Sp. Z o.o. 08/27/2015 SC2LabsEurope
USA Technologies, Inc. (Malvern Pennsylvania)
12/23/2015 TrustwaveUS
USAePay, a Gorcorp Company 05/23/2016 TrustwaveUS
Value Pay Services LLC, an IPC Company 11/30/2015 IBM Internet Security Systems (ISS)US
Value Payment Systems 01/14/2016 A-Lign Security and Compliance ServicesUS
Vanco Services, LLC 03/01/2016 SecurityMetricsUS
Vantiv – National Processing Company (NPC) 09/17/2015 Optiv Security Inc.US
Vantiv - Skipjack Financial Services, Inc. 09/17/2015 Optiv Security Inc.US
Vantiv Card Management Corporation (Vantiv CMC)
10/01/2015 Optiv Security Inc.US
Vantiv eCommerce (f.k.a. Litle & Co.) 10/31/2016 Optiv Security Inc.US
Vantiv, Inc. (Vantiv Acquiring Systems, Vantiv Prepaid Systems, Vantiv Issuing and Switch Providing Systems, Vantiv)
06/14/2016 Optiv Security Inc.US
Varolii Corporation 09/16/2015 Schellman & Company, Inc.US
Vector Intelligent Solutions (Industry Retail Group, Inc.)
06/20/2016 Dara SecurityUS
Vendini, Inc. 10/25/2016 SecurityMetricsUS
VenTek International (Caracal Enterprises LCC)
12/31/2015 Coalfire Systems, Inc.US
Verifi, Inc. 06/23/2016 Payment Software Company (PSC)US
VeriFone - VeriSheild Protect 08/30/2016 SecurityMetricsUS
Verifone (TS3 Services) 05/14/2016 Foregenix LimitedEurope
Wednesday, November 16, 2016 Page 62 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Verifone Finland Oy (Verifone Sweden AB, Verifone Norway AS, Verifone á Íslandi ehf, Verifone Baltic SIA, Verifone Denmark A/S)
11/10/2015 Foregenix LimitedEurope
VeriFone Paybox (Point Transaction Systems, Paybox)
10/14/2015 Foregenix LimitedEurope
Verifone Services UK & Ireland Ltd (PAYware Ocius Managed Services)
10/31/2016 Foregenix LimitedEurope
Verizon Business Network Services Inc. (Verizon Business IP Application Hosting)
12/08/2015 TrustwaveUS
Verotel Merchant Services BV 12/23/2015 VOC-Consultancy BVEurope
VersaPay Corporation 05/28/2016 (1) Modosecurity Inc.Canada
VeryPlanet Co., Ltd. 07/10/2016 atsec (Beijing) Information Technology CAsia Pacific
Vesta Corporation 06/23/2016 Online EnterprisesUS
Vindicia Inc. 09/30/2016 Payment Software Company (PSC)US
Virtual Card Services (Pty.) Ltd. (VCS) 08/30/2016 SecuriCentrixSAMEA
VisionOne, Inc. (Assesso ShoWare) 09/21/2016 IBM Internet Security Systems (ISS)US
VocaLink Ltd. (VocaLink ATM Systems) 11/15/2015 Verizon/CybertrustEurope
Voice Data Solutions, Inc. 10/05/2016 Dara SecurityUS
Volusion, Inc. 03/07/2016 Payment Software Company (PSC)US
vSecure Processing, Inc. (vBusiness Processing Inc. (vSG))
07/15/2016 ControlScanUS
VXI Global Solutions, LLC 01/07/2016 TrustwaveUS
Wageworks 01/10/2016 RSM McGladrey, Inc.US
Washington Metropolitan Area Transit Authority (WMATA)
02/14/2016 ControlCaseUS
Wave Crest Holdings Limited (GTECH) 12/27/2015 ControlCaseAsia Pacific
Wednesday, November 16, 2016 Page 63 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Web Active Corporation Pty Ltd (eWAY, eWAY Europe, eWAY NZ, eWAY Payments)
12/17/2015 BAE Systems Applied Intelligence PTY LiAsia Pacific
WEBINC GmbH & Co KG 07/15/2016 usd AGEurope
Webpay 11/23/2015 Security Research & Consulting GmbHEurope
Webteh d.o.o. 10/30/2015 Nethost Legislation LtdEurope
WePay Inc. 05/03/2016 Coalfire Systems, Inc.US
Western Union Speedpay 06/01/2016 Tevora Business SolutionsUS
Wincor Nixdorf International GmbH 11/23/2015 Adsigo AGEurope
Wincor Nixdorf s.r.o. (Wincor Nixdorf Czech Republic)
12/16/2015 TrustwaveEurope
Wipro BPS (division on Wipro Limited) (formerly Wipro IT Business (Wipro BBY))
10/16/2015 SISA Information Security Pvt. Ltd.Asia Pacific
Wipro Limited (British Telecom Process) - Kolkata
03/31/2016 ControlCaseAsia Pacific
Wirecapital LTD (Wirecapital, Wirecapital Russia)
04/30/2016 GRSee ConsultingEurope
Wirecard Central Eastern Europe GmbH (formerly QENTA)
03/23/2016 TrustwaveEurope
Wirecard Processing FZ LLC (formerly ProCard Services FZ LLC)
12/01/2015 TrustwaveSAMEA
Wirecard Singapore Pte Ltd (Formerly Visa Processing Services Pte Ltd)
01/14/2016 IBM Internet Security Systems (ISS)US
Wirecard South Africa (Pty) Ltd. 10/19/2016 SecuriCentrixSAMEA
Wirecard Technologies GmbH 03/23/2016 TrustwaveEurope
Wirecard UK and Ireland Ltd. 02/11/2016 TrustwaveUS
Wednesday, November 16, 2016 Page 64 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Wolfe LLC (GiftCards.com, LLC, OmniCard, LLC, (flkla WRL.com, LLC), Omni Prepaid, LLC)
09/09/2015 TrustedSec, LLCUS
Worldline GmbH (formerly Atos Worldline GmbH)
12/04/2015 usd AGEurope
Worldline India Private Limited (formerly Atos Worldline Pvt. Ltd.)
01/26/2016 TrustwaveAsia Pacific
Worldline International (Malaysia) Sdn Bhd 02/26/2016 TrustwaveAsia Pacific
Worldline SA (Worldline RBU3, Regional Business Unit France)
09/07/2016 TrustwaveEurope
Worldline SA/NV (formerly ATOS Worldline (Belgium) - (Banksys))
05/11/2016 TrustwaveEurope
WorldNet TPS 07/15/2016 Sysnet Ltd.Europe
WorldPay (UK) Limited (Streamline) 07/08/2016 Sysnet Ltd.Europe
WorldPay (UK) Limited (WorldPay Business Gateway, Worldpay Corporate Gateway)
07/08/2016 Sysnet Ltd.Europe
Worldpay LatAm (Cobre Bem) 07/08/2016 Sysnet Ltd.Latin Americ
Worldpay SN, LLC (SecureNet (Securenet Payment Systems))
06/15/2016 Coalfire Systems, Inc.US
Worldpay UK Limited (Worldpay Online Payments (Clearwater)
07/12/2016 Sysnet Ltd.Europe
WorldPay US, Inc. (formerly RBS WorldPay (US))
06/30/2016 Coalfire Systems, Inc.US
Xcellapay - Payment Solutions 03/29/2016 SISA Information Security Pvt. Ltd.US
Xerox State & Local Solutions, Inc. 03/30/2016 Cadence AssuranceUS
Xlink Communications (Pty) Ltd. 11/27/2015 Sysnet Ltd.SAMEA
Yalamanchili International Pte Limited 03/31/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Wednesday, November 16, 2016 Page 65 of 66
The Mastercard Compliant Service Provider List
Service Provider Name Region AOC Date Assessor
A company’s name appears on this Compliant Service Provider List if (i) MasterCard has received a copy of an Attestation of Compliance (AOC) by a Qualified Security Assessor (QSA) reflecting validation of the company being PCI DSS compliant and (ii) MasterCard records reflect the company is registered as a Service Provider by one or more MasterCard Customers. The date of the AOC and the name of the QSA are also provided. Each AOC is valid for one year. MasterCard receives copies of AOCs from various sources.
This Compliant Service Provider List is provided solely for the convenience of MasterCard Customers and any Customer that relies upon or otherwise uses this Compliant Service Provider list does so at the Customer’s sole risk. While MasterCard endeavors to keep the list current as of the date set forth in the footer, MasterCard disclaims any and all warranties of any kind, including any warranty of accuracy or completeness or fitness for any particular purpose. MasterCard disclaims any and all liability of any nature relating to or arising in connection with the use of or reliance on the Compliant Service Provider List or any part thereof. Each MasterCard Customer is obligated to comply with MasterCard Rules and other Standards pertaining to use of a Service Provider.
As a reminder, an AOC by a QSA provides a “snapshot” of security controls in place at a point in time.
DESV
Yalamanchili Software Exports Ltd. 02/24/2016 SISA Information Security Pvt. Ltd.Asia Pacific
Yantra Services Inc. 09/23/2016 Information Exchange Inc.US
YapStone, Inc. (RentPayment, RentPayment, VacationRentPayment, DuesPayment, InnPayment, StoragePayment, and ParishPay)
04/21/2016 Schellman & Company, Inc.US
Yardi Systems 11/19/2015 Sungard Availabilty ServicesUS
Yardi Systems, Inc. (Centershift) 05/24/2016 SecurityMetricsUS
YES Group Limited (HK) 11/18/2015 NTT Com Security (formerly Integralis)Asia Pacific
Yijifu Technology (HongKong) Co., Ltd. 11/10/2015 atsec (Beijing) Information Technology CAsia Pacific
Yodlee, Inc. 12/09/2015 Online EnterprisesUS
Zagrebacka banka d.d. 07/15/2016 IBM Internet Security Systems (ISS)Europe
Zedd Customer Solutions 09/20/2016 Control Gap Inc.Canada
ZippyYum LLC 10/27/2015 Intersec WorldwideUS
ZirMed, Inc. 05/03/2016 Secure State ConsultingUS
Zuora, Inc. 04/28/2016 Schellman & Company, Inc.US
Wednesday, November 16, 2016 Page 66 of 66