The only Ooredoo OpCo and the first telecom operator in Kuwait

KUWAIT: Ooredoo Kuwait announced that it has officially been re-certified with the Payment Card Industry (PCI)-Data Security Standards (DSS) 3.2.1 Compliance International Certification and ISO 27001:2013, making it the only Ooredoo OpCo and the first telecom provider in Kuwait to be certified with the latest version of the certification for the third year in a row.

International standards
PCI-DSS is the global industry standard for compliance and security for personal payment card data, to which vendors and businesses must conform to in order to protect cardholders' personal data and prevention from credit card fraud.

Ooredoo's PCI-DSS compliance was first validated in December 2016, after an extensive audit conducted by ControlCase, a qualified security assessor. Ooredoo Kuwait was the first company in Kuwait to take that step, further solidifying its position in the local market. This step helps customers make safe transactions Ooredoo's web payment portal, in addition to using Ooredoo's payment kiosks, conveniently located in 90 locations across Kuwait for customers' satisfaction.

The ISO 27001:2013 International Certification ISO 27001 certification shows Ooredoo's proactive approach towards cyber security threats and its dedication to adopt the best practices in order to minimize these threats. This certification also improves the company's credibility especially within the B2B segment.

Ooredoo is the only telecom operator in Kuwait to achieve the latest version of the PCI-DSS 3.2.1Re-Certification Compliance International Certification for the third year in row and it is a major milestone for the company. This certification is an internationally recognized certification for customer's card's data security, and is a standard adapted for securely processing, transmitting and storing different payment card's data.

Obtaining this certification is a very big step for Ooredoo due to its importance in preventing, detecting and responding to cyberattacks that can lead to breaches. This certificate helps the organization to strengthen all payment channels including the Ooredoo digital platform. Furthermore, PCI-DSS International Certification is a step ahead to prove to customers the company's dedication to build and maintain a safe and trusted environment to protect all of Ooredoo Kuwait's customer information.

Ongoing commitment
Commenting on this announcement, Chief Executive Officer at Ooredoo Kuwait, Sheikh Mohammed bin Abdullah Al-Thani stated "This accomplishment reinforces our commitment to ensure the best services to our customers, with safe online transactions to protect them against fraud and other privacy breeches. This step is reflective of the company's core values of caring and connecting. Ooredoo strives to provide its customers with the best services, while ensuring the safety of their privacy and information." Al-Thani further added, this standard helps the organization to strengthen all payment channels including Ooredoo's digital platform. Furthermore, PCI-DSS International Certification is a step ahead to prove to our customers our dedication to build and maintain a safe and trusted environment to protect all of Ooredoo Kuwait's customer information.

Tight security measures
PCI security standards are technical and operational requirements set by the Payment Card Industry Security Standards Council to protect cardholder data. The standards globally govern all merchants and organizations that store, process or transmit this data - with new requirements for software developers and manufacturers of applications and devices used in those transactions.

Compliance with the PCI set of standards is mandatory for their respective stakeholders, and is enforced by the major payment card brands.

Commendable efforts
Commenting on Ooredoo's achievement, ControlCase COO Suresh Dadlani said Ooredoo's efforts to ensure customers' privacy of payment information are truly commendable. He added, "We're always happy to see companies and organizations such as Ooredoo Kuwait working to ensure that their clients' information are protected, especially during times like this when cyberattacks and customers' credit card privacy information are under threat. We wish Ooredoo the best of luck in their future endeavors."