Credit Card Security
Here at Exclusive Private Villas, we take your booking data and credit card security extremely seriously, which is why we use PCI DSS compliant Docusign, one of the most secure information transfer systems in the world, making all aspects of your booking with us safe and secure.
Compliance with rigorous security standards
DocuSign meets the industry’s rigorous security certification standards, and uses the strongest data encryption technologies available. DocuSign is the only DTM provider to be ISO 27001-certified and SSAE 16-certified (SOC 1 and SOC 2) and internationally tested across the entire company and its data centres. DocuSign is certified compliant on the xDTM Standard, version 1.0 —the transaction management standard for an open, digital world.
To demonstrate our commitment to protecting customer data, our partner, DocuSign, has significantly invested in maintaining certifications in the following regulatory and industry standards.
DocuSign is ISO27001:2013 certified. This is the highest level of global information security assurance available today, and provides customers assurance that DocuSign meets stringent international standards on security.
SOC 1 Type 2, SOC 2 Type 2
As a SOC 1 and SOC 2-certified organization, DocuSign complies with the reporting requirements stipulated by the American Institute of Certified Public Accountants (AICPA). We undergo yearly audits across all aspects of our production operations, including our datacenters, and have sustained and surpassed all requirements.
The first standard of its kind to focus on digital transaction management, the xDTM Standard was developed to raise the bar on quality and promote more trust and confidence in conducting business transactions online. The standard ensures that digital transactions are protected yet accessible, regardless of where parties reside or the devices used. DocuSign is certified compliant with the xDTM Standard. Compliance with rigorous security standards DocuSign meets the industry’s rigorous security certification standards, and uses the strongest data encryption technologies available. No other Digital Transaction Management (DTM) company can match the enterprise security and operations investments DocuSign has made—and third-party audit reports back it up. DocuSign is the only DTM provider to be ISO 27001-certified and SSAE 16-certified (SOC 1 and SOC 2) and internationally tested across the entire company and its data centers. DocuSign is certified compliant on the xDTM Standard, version 1.0 —the transaction management standard for an open, digital world. The xDTM Standard helps organizations and consumers leverage the benefits of DTM to conduct online transactions without exposing them to the risks and consequences of using noncompliant technologies. Built on the dual concepts of trust and reliability, the Standard includes specific, measurable thresholds for security, privacy, interoperability, availability, and other critical elements.
DocuSign maintains compliance with the current version of the PCI Data Security Standard (DSS) to ensure safe and secure handling of credit card holder information. As overseen by the Payment Card Industry Security Standards Council (PCI SSC), DocuSign places stringent controls around cardholder data as both a service provider and merchant. DocuSign is listed as a PCI Service Provider on the Visa Global Registry of Service Providers.
With Skyhigh's CloudTrust program, DocuSign fully satisfies the most stringent requirements for data protection, identity verification, and security controls based on detailed criteria developed in conjunction with the Cloud Security Alliance (CSA).