We are fully PCI certified

Not just PCI compliant

What’s the difference between PCI compliance and PCI certification?

PCI compliance means a company has taken steps to help protect Card Holder Data (CHD) following the guidelines set by the PCI Council.

Whereas PCI certification is a rigorous and comprehensive process that involves a full-scale audit by a qualified security assessor (QSA).

What does PCI certification involve?

During a PCI certification audit, the QSA validates all areas of the business that come in contact with CHD to ensure proper controls and security measures are in place to protect the customer.

This includes: 

- How the software is developed;

- The process by which developers are trained; 

- Technical and procedural controls; and 

- A full review and validation of all PCI controls.

...all of which takes up to six months to complete.

In short, PCI certification is proof, whereas compliance is a claim.

What does PCI certification mean for my business?

STAAH being fully PCI certified means that:

- Your guests can book with confidence knowing that their card data is secure;

- You can have complete peace of mind to trade using our technology; and

- Banks are more likely to issue merchant facilities to your property.


Follow the links below to learn more about our products:

- ConvertDirect Booking Engine

- Instant Channel Manager

- InstantSite Websites


F3, 27-29 William Pickering Drive,
Rosedale, Auckland 0632
New Zealand

P.O.Box 302380
North Harbour
Auckland 0751

Copyright © STAAH
All rights reserved
About us
Terms of use