In order to enhance security of our customers’ credit card information, and as outlined in previous announcements, PCI Booking has implemented changes to the CVV Retention Policy. The new CVV Retention Policy covers two major components: While previous CVV Retention Policies have allowed indefinite storage, CVV values may now be stored for a limited time (up to 48 months), with the default storage period set to one month. This CVV storage period can be adjusted by users, either by updating the booker wide settings or manually through one of the API requests. When this new policy comes into effect, CVV data will be deleted from card tokens that exceed the period set for storage of CVV data. The previous CVV Retention Policy, which allowed for unlimited number of relays of…

PCI Booking have again renewed our PCI DSS Level 1 PCI Compliance, a continuation from 2012 when PCI Booking first became fully compliant with this highest level of PCI accreditation. This latest Attestation of Compliance (AOC) renewal will run from December 9th, 2017 through December 8th, 2018. At time of increased threat from cyber-criminality, once again renewing Level 1 PCI Compliance highlights our commitment to protecting the personal data that our customers entrust PCI Booking with. View our Attestation of Compliance and learn more about our PCI DSS Level 1 PCI Compliance here.