PCI Booking: A Secure Solution for PCI Compliance

Protecting Customer Information and Reducing Costs

PCI Booking, designed by Geoff Milton and his team, provides online travel agents, travel management companies, computer reservation systems, hotels, and channel managers with a secure shield against PCI scope. By removing payment card data from their systems, businesses can save time and money, avoid the cost of PCI audits, prevent reputation damage, and eliminate the risk of expensive fines resulting from a data breach.

What sets PCI Booking apart is its fully integrated card tokenization solution. By masking credit card data from user web screens and API calls, the software stores the card data within the PCI Booking service and represents each card data item as a token. This token is then returned to customer applications, ensuring that sensitive payment details are never exposed.

For outbound services, PCI Booking allows customers to securely send sensitive data or display card data to hotels. API requests are submitted through the PCI Booking service with a token attached to the reservation instead of the card data. PCI Booking replaces the token with the real card data and relays the request to its destination, providing a seamless and secure transaction process.

PCI Booking is not only a powerful solution but also a compliant one. It is accredited with Attestation of Compliance (AOC) and listed with Visa Europe, making it a PCI DSS Level 1 compliant solution. Additionally, it complies with the EU data protection directive, which restricts personal data storage within the countries covered by the directive.

The journey of PCI Booking began in 2014 when the software was successfully launched to the travel market. Inspired by the lack of protection for both customers and businesses in the travel sector, Geoff Milton and his team made it their mission to provide a secure solution in an industry they understand and care about. Through market research, client research, and pilot schemes, they refined their software models to meet the specific needs of the travel industry.

The most challenging aspect of the project was convincing the travel industry of the real PCI compliance issue that needed addressing. However, with their innovative solution and commitment to data security, PCI Booking has gained recognition and accolades. In 2016, it was awarded the Silver A' Design Award in the Mobile Technologies, Applications, and Software Design category, showcasing its outstanding expertise, innovation, and excellence.

With PCI Booking, businesses in the travel industry can confidently protect their customers' payment card data, reduce the cost of PCI compliance, and ensure a secure and seamless payment process. By choosing PCI Booking, they choose peace of mind and a commitment to data security.