The Experian Independent Third Party Assessment (EI3PA) was created to protect and ensure the secure processing and storage of credit history data shared by Experian. The assessment is based on the standard 12 PCI-DSS requirements.
Any third-party company that stores or accesses Experian credit history information.
Unlike PCI-DSS, EI3PA:
Mandates an on-site visit from a Qualified Security Assessor to verify the compliance of third parties—no matter how big or small your organization is. Additionally, there are no tiers or different merchant levels with EI3PA—requirements are standard across the board.
Requires annual web application and network penetration testing. The two PCI-DSS 11.3 penetration tests must be done once every year or after any major security overhaul.
MegaplanIT’s experienced consultants will walk you through the compliance process and provide you with the most up-to-date EI3PA guidance available from Experian.