YapStone is Recertified as a Payment Card Industry-Data Security Standard Level 1 Payment Gateway and Payment Processing Company

WALNUT CREEK, Calif.–(BUSINESS WIRE)–YapStone, a global provider of web and mobile payment technology solutions for large vertical markets and online marketplaces, announced that it has completed its recertification as a Payment Card Industry-Data Security Standard (PCI DSS) Level 1 Payment Gateway and Payment processing company, following a detailed audit by BrightLine. On an annual basis, YapStone contracts the licensed CPA firm to conduct a comprehensive audit to ensure credit card data is stored, processed and transmitted in a secure and protected manner. The audit includes document collection and analysis, vulnerability scanning and management, security policies and procedures, access controls, penetration testing and other requirements as specified in PCI 3.0 data security standards.

As cardholder data security is one of the most significant issues facing the payment card industry, YapStone is focused on meeting the PCI DSS, the multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and critical protective measures in order to safeguard sensitive data.

“As a global payment gateway and payment processor, we are committed to employing the highest security standards possible for payment transactions and cardholder information,” said Tom Villante, YapStone Chairman, CEO and Co-founder. “Our partners expect us to comply and exceed the requirements established in the PCI standards, which is why our team is continuously focused on improving our systems and operating practices to address evolving threats and changes to the PCI standards.”

YapStone has also completed the Statement on Standards for Attestation Engagements (SSAE) 16 Type 2 examinations for 2014. BrightLine conducted the SSAE 16 audit over a twelve-month period that ended January 31, 2015.

“SSAE 16 provides our customers with assurance of internal controls, including security and environmental compliance, and validation of our commitment to the most stringent standards of operational excellence,” said Christopher McLaughlin-Brooks, YapStone VP of Service Engineering & Operations.

Formerly known as SAS 70, SOC 1 is published by the AICPA (American Institute of CPAs®) under the attestation standard SSAE 16 and involves undergoing an examination of policies, operating procedures and controls related to financial reporting of user entities by an independent auditor to objectively validate that the service organization meets its declared control objectives.

About YapStone

YapStone is a leading global provider of web and mobile payment technology solutions enabling electronic payments and automated onboarding for global online and mobile marketplaces, including HomeAway® and VRBO®, as well as for large vertical markets, including apartment and vacation rentals (through its RentPayment and VacationRentPayment brands, respectively), HOA communities, self-storage and non-profits. YapStone develops tailored payment solutions to address partner needs and processes over $14B in payments volume annually. YapStone continues to be recognized for its growth, ranking on the Inc. 5000 list of Fastest-Growing Private Companies for seven consecutive years, and honored in 2013 and 2015 on Forbes’ List of America’s Most Promising Companies. YapStone has raised over $110 million from investors, including Accel Partners, Meritech Capital and Bregal Sagemount. YapStone is headquartered in both Walnut Creek and Santa Monica, California with its international operations center in Drogheda, Ireland. To learn more, visit www.yapstone.com.

Media Contact:
Troy Scarlott
VP, Marketing