Controlling risk
Our card authorisation network complies with an information security policy which is based on ISO 27001 and PCI-DSS standards.
It defines the core guidelines related to the information systems it operates.
As an extension of this policy, an internal control process has been implemented, based on the COBIT standard.
Controls are performed on both a permanent and periodical basis.