Learn More About HPE Security - Data Security Solutions
How a regional air carrier reduced PCI scope and protected customer card data
A growing regional air carrier needed a way to protect its customer data and achieve compliance at both level-1 and level-2 classifications. Internally, the company sometimes describes itself as an “e-commerce business with airline attached”. The airline accepts customer credit card information at several points: ticket purchases over the web, through the call center, and at ticket counters, through their mobile application for customers using smartphones, as well as for refreshment purchases in-flight using mobile devices. It also retains customer payment and passport information for future expedited checkout and processing refunds.