Golden Gate Ventures | Venture Capital for Southeast Asia

Omise first in Thailand to get milestone card security compliance certification

Omise, the region’s leader in online payment processing and risk management, has achieved the Payment Card Industry Data Security Standard (PCI DSS) version 3.2 – meaning it can to handle all credit card storage, processing and transmission.

The company received this compliance from the PCI Council for its online payment platform, making it the first payment gateway in Thailand to receive this most recent version of the certification.


PCI DSS is a comprehensive card security standard regulated by the worlds’ leading card associations: American Express, Discover, JCB, MasterCard and Visa.

It evaluates payment account data security by assessing the processor’s network and software architecture along with its security policies and data protective procedures. This attestation is required by any provider who stores, processes or transmits cardholder data.


Omise said in a statement:  “The announcement further demonstrates the company’s commitment to payment security technology leadership after it announced in late 2014 that it was the first online payment gateway in Thailand to ever receive PCI compliance in all 3 scopes – including storing, processing and transmitting card data.”


Frederico Araujo, chief information officer at Omise said “integrating with us means that merchants don’t have to be PCI compliant. Since Omise is PCI DSS compliant, we are able to handle all credit card storage, processing and transmission. Without PCI DSS it would not be possible to process any credit card information.”


Frederico added that PCI DSS is crucial for the long term success between Omise and its customers. This includes extended and continuous monitoring and identification of threats.


Omise has a dedicated security team that continuously monitors all systems and can take immediate action whenever a suspicious alert occurs. A data breach can be devastating to any business dealing with credit card data. In fact most businesses never recover as the losses are so high.


Original article appeared on The Nation