CERTIFIED QUALITY

Auriga has obtained the most important certifications in the field of EN ISO, in addition to those required by large companies in banking services, guaranteeing the highest performance of quality and security to their clients.

ISO 27001, the international information security standard

The ISO 27001 certification is the international security specification for an ISMS (Information Security Management System). An ISMS is a framework of policies and procedures that includes all legal, physical and technical controls involved in an organization’s information risk management processes: it is what an organisation must develop to be able to protect itself from potential threats to the security of the information it manages.

Information protection is about ensuring, through the controlled management of business processes, the desired levels of:

Confidentiality – protecting information from unauthorised access.
Integrity – safeguarding the accuracy and completeness of information.
Accessibility – ensuring that data and information is accessible when required.

Achieving accredited ISO 27001 certification allows to demonstrate that the company is following information security procedures and provides an independent, qualified audit of whether information security is being managed in line with international standards and business objectives.

Auriga has been certified as compliant by an independent, accredited certification body following the successful completion of a formal compliance audit.

PCI PA-DSS Validated - Certificazioni di Auriga

PCI SSC – PAYMENT CARD INDUSTRY SECURITY STANDARDS COUNCIL

The Payment Application Data Security Standard (PA-DSS) is recognised worldwide and consists of a series of security standards. These must be adhered to by developers of payment and withdrawal applications when concerning procedures and systems, which store, process and transmit card data during payments and withdrawals.

The adoption by banks and payment processors of applications certified by the PA-DSS allows them to reduce the risk of card data theft, but also, helps them in the process of PCI DSS certification, and makes it easier to obtain the aforementioned certificate from the PCI Security Standards Council.

In other words, PA-DSS certification guarantees that the application ensures the security of card holders’ data, without storing or memorising them (e.g. PAN, records, PIN code). Auriga has achieved the important certification PA-DSS given by the PCI Security Council both for its client and server component of its proprietary architecture software, as reported on the web site of the international institution.

BANCOMAT

BANCOMAT S.p.A. supports the enhancement of the payment cards market in Italy through the parent corporation of BANCOMAT and PagoBANCOMAT networks.

The BANCOMAT certification consists in the evaluation of compliance of products or processes using microchip technology to BANCOMAT regulations and specifications and it is given when the concerning check phases are overcome.

WWS Client (the Smart Client application on the ATM) has obtained certification from BANCOMAT on ATM and self-service devices manufactured by Diebold Nixdorf, KEBA, Nautilus Hyosung, NCR, Sigma.

EMVCo - Certificazioni di Auriga

EMVCO – EUROPEAN, MASTERCARD AND VISA CONSORTIUM

The latest EMVCo Level 2 Certification of our kernel was obtained in July 2018, so our EMVCo Kernel is conforming with the 4.3G EMV Specification.

Additionally Auriga is a Company Subscriber of the EMVCo organization, to assure our customers the compliance of products to this standard and promote all actions needed to answer the customers’ needs.

German Banking Industry Committee - Certificazioni di Auriga

DK – DEUTSCHE KREDITWIRTSCHAFT

The German Banking Industry Committee (GBIC) is the voice of the leading German banking-sector associations. These are the National Association of German Cooperative Banks (BVR), the Association of German Banks (BdB), the Association of German Public Banks (VÖB), the German Savings Banks Association (DSGV), and the Association of German Pfandbrief Banks (vdp). Auriga has achieved the important German national banking certification “Deutsche Geldautomaten-System Zulassung” for its WWS ATM solution.

Using WWS ATM German banks can extract much more value and provide better service to their customers using their traditional ATM networks while also more seamlessly integrating this channel with their online, mobile and branch channels as part of an omnichannel service strategy.

MyBank - Certificazioni di Auriga

MY BANK

Auriga partners with the initiative MyBank run by EBA CLEARING, the pan-European payment infrastructure solutions provider owned by 64 of the major banks operating in Europe, and has been certified as routing service and validation service provider.

CONSORZIO CBI – CUSTOMER TO BUSINESS INTERACTION

Auriga is the only non bank player certified as Technical Delegated Structure (STD) and as Point of Access Manager (GPA) of the CBI network.

VISA - Certificazioni di Auriga

ADVT-VISA

Mastercard - Certificazioni di Auriga

ETEC-MASTERCARD

EN ISO 9001

EN ISO 14001

ISO 45001:2018

EAST-Logo-Strapline

European Association for Secure Transactions

Founded in 2004, EAST is a ‘non-profit’ organisation, focused on cross-border public/private sector partnership, whose members are committed to gathering, collecting and sharing information on Terminal & Payment security. Auriga has become a Member of East as a stakeholder in the payment industry and for its commitment in preventing security risks to terminals (ATM , POS and UPT) and payments.

ISO 22301, SECURITY AND RESILIENCE - BUSINESS CONTINUITY MANAGEMENT SYSTEM

ISO 22301 sets out the requirements for an efficient Business Continuity Management System.

Its methodology consists of a set of practices aimed at maintaining Business Continuity under adverse conditions, minimising the impact of potential incidents on customers, stakeholders and the entire business system.

ISO 22301 sanctions the importance of Business Continuity plans with respect to Disaster Recovery: Disaster recovery acts following the event and its stabilisation (e.g. restore with backup), while Business Continuity also acts on the preventive aspects and timely response to the event (e.g. specific BIA-BCP).

Business Continuity is therefore about building a system that ensures the continuous improvement of the level of business resilience. Therefore, each organisation must equip itself with prevention tools and resources, which, in addition to guaranteeing organisational resilience, demonstrate the ability to cope with and absorb any unforeseen event, while continuing to achieve its objectives.

Auriga has put in place a business continuity management plan based on the identification of critical areas and related mechanisms to ensure their resilience, and is preparing to pursue a cycle of continuous improvement that must take into account changes to both the organisation and the general external environment.

Auriga, following an audit by an independent and accredited body, has obtained ISO 22301 certification number IT99204L.

TOP