More Security for Highly Specialized Solution: Solaris SE Certified According to PCI DSS

27. October 2023

Solaris SE, technology company with a full German banking license, successfully completed the PCI DSS certification project with usd AG in June 2023. Solaris SE thus offers its customers a demonstrably more secure environment for credit card data.

As an issuing bank, Solaris aims to remove the barriers for companies to offer their own financial products. With its proprietary Banking-as-a-Service platform, Solaris enables companies to integrate financial services into new contexts. As part of the PCI DSS certification, a team of auditors from usd AG reviewed Solaris' solutions and state-of-the-art microservices for security and compliance with the standard.

Effective protection for sensitive data

The PCI DSS (Payment Card Industry Data Security Standard) is a binding and globally applicable security standard for handling credit card data. With annual certifications, companies demonstrate that they comply with the standard's strict security requirements. Thanks to the PCI DSS certification, Solaris customers can be confident that their data and the data of their customers are protected against misuse and theft in the most effective way possible.

"Solaris offers its customers a highly specialized solution," says Mario Matyschok, Senior Security Consultant at usd AG, who accompanied the certification project as an auditor. "For us as auditors, such projects are particularly exciting – and also especially gratifying when our contacts on the customer side are as committed and competent as they are at Solaris. We are pleased that we were able to successfully complete the PCI DSS certification project so quickly and would like to thank everyone involved in the project at Solaris for their great cooperation."

Ready for PCI DSS v4.0 – ready for the future

With PCI DSS v4.0, the PCI Security Standards Council published the most comprehensive update of the security standard for credit card data to date. On the sunset date of version 3.2.1 in April 2024, some of the new requirements from version 4.0 will already become mandatory. In order to optimally prepare for the upcoming certification according to PCI DSS v4.0, Mario Matyschok conducted a workshop with Solaris' PCI coordinators after the audit was completed, in which they reviewed the new requirements of the standard and discussed possible implementations.

"Our vision is a world where financial services are perfectly connected to everyday life," says Calle Billger, Sr Engineering Manager at Solaris. "In doing so, our customers rely on our services to fit seamlessly into their processes while meeting the highest security requirements. We are pleased that with our successful certification against PCI DSS, we can now demonstrate that we take this responsibility very seriously – and are also well prepared for future certifications."

Also interesting:

Top 3 Vulnerabilities in SAP Pentests

Top 3 Vulnerabilities in SAP Pentests

During their penetration tests (pentests), our security analysts at usd HeroLab repeatedly uncover vulnerabilities that pose significant risks to corporate security. They increasingly encounter the same vulnerabilities. Our blog series "Top 3 Vulnerabilities" presents...

PCI DSS v4.0.1 Released

PCI DSS v4.0.1 Released

In response to stakeholder feedback and questions received since the release of PCI DSS v4.0 in March 2022, the PCI Security Standards Council (PCI SSC) released an update to PCI DSS: Version 4.0.1 on June 11, 2024. This update incorporated feedback from key...

Categories

Categories