Compliance and security go hand-in-hand; so it is a best practice to address them together to ensure compliance with applicable government standards. Metacloud maintains compliance with Payment Card Industry Data Security Standard (PCI DSS) and Service Organization Controls (SOC) 2 standards. To achieve compliance with commercial and government requirements Metacloud offers a PCI package. Contact your Metacloud Account Representative to request the package.
The PCI DSS is designed by the PCI Standards Council to increase controls around card holder data and reduce credit card fraud. Annual compliance assessments must be conducted and reported by a third party or internally by a self-assessment questionnaire, depending on the volume of transactions by card holders. Metacloud deployments that store, process, or transmit payment card details must be PCI compliant.
Cisco Metacloud (version 4.1.9 and later) is certified compliant with PCI DSS, version 3.2, as a Level 1 Service Provider.
SOC 2 Type 2
SOC 2 Type 2 is an attestation of controls that affect the security and availability of Metacloud systems. Metacloud maintains SOC 2 Type 2 certification to ensure that your sensitive data is secure.
SOC 2 Type 2 reports cover the fairness of the description of Metacloud (by Cisco) and the suitability of the design and effectiveness of the security and availability controls to achieve the objectives specified in the description.
Refer to the following topics for more information:
You can request the PCI package and review the Metacloud Attestation of Compliance from your Metacloud Account Representative.