1 / 10

Accor PCI DSS Project

Accor PCI DSS Project. Marie-Christine Vittet PCI DSS Program Director July 2013. Accor Group Presentation. Accor Group Presentation. Accor Group Presentation. PCIDSS scope in Accor. Accor Central (Merchant Level 1)

bruno-bishop
Download Presentation

Accor PCI DSS Project

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Accor PCI DSS Project Marie-Christine Vittet PCI DSS Program Director July 2013

  2. Accor Group Presentation

  3. Accor Group Presentation

  4. Accor Group Presentation

  5. PCIDSS scope in Accor • Accor Central (Merchant Level 1) • Accor central covers the distribution system: central reservation systems, web & e-commerce systems, call centers, different interfaces with Global Distribution Systems • and online Travel Agency systems available for Accor hotels • Hotels (Merchant Level 4) • Owned & Leased hotels (subsidiaries) • Operated and controlled by ACCOR Group, Owned and Lease hotels • are under the ACCOR responsibility • Managed & Franchised hotels • - Managed hotels: ACCOR manages a hotel on behalf of an owner • under an ACCOR brand. The hotel benefits from all the distribution • and marketing know-how of the group • -Franchised hotels: On the opposite of the management contract, the • hotel is managed by an independent owner who uses an ACCOR • brand and the distribution system QSA audit SAQ

  6. ACCOR Steering Committee Accor Executive Attendance Quarterly basis ACCOR Coordination Committee Track Leader Attendance (Operations, IT, Distribution, Call Center, Legal & Treasury) Monthly basis ACCOR Country Committee Local Representative Attendance (IT, Operations, Finance, HR & Legal) Monthly basis ACCOR Meeting with Schemes Biannual Bilateral meetings PCI DSS - Accor Governance Support & Validate Organize & Monitor Roll-Out Report

  7. PCI DSS - Accor Program Kit • PCI Program kit is ready to be implemented! • PCI DSS Compliance in Accor document • Accor PCI eModule • Policies and Procedures (3 Quick-wins) • Guideline for hotels renovation • Under construction: PCI Hotel Portal • User training • IP Scanning • Policies and Procedures Templates • Online SAQ

  8. Accor PCI eModule • This formal security awareness program is based on a 50 minutes eModule. Each Accor employee dealing with payment card data must follow this program at least one time per year. The training will end with a questionnaire in order to get the certification.

  9. Accor PCI eModule testimony The PCI e-Module clearly demonstrates how the hotel staff could comply to PCIDSS in their daily work in a very simple and easy to understand approach.  NG Joseph, PMS Manager - Asia/Singapore The e-module is very clear and pointed out risks I was not aware of. I have learned a lot! Lassing Annelies, Pricing & Distribution Support Manager/ STAR - HQ Amsterdam It’s really good – and simple to understand. Think it’s a good tool to remind everybody about security rules – also for his personal interest and data. Frankenhauser Silvia, Manager Distribution Systems/ Commercial - HQ Munich

  10. Accor PCI project Contact ? Contact: Marie-Christine VITTET Accor - PCI DSS Program Director Email: marie-christine.vittet@accor.com Thank you for your attention

More Related