Data Protection Pivoted on Globally Recognised Standards.

Data Protection Pivoted on Globally Recognised Standards.

Partner data protection is of the utmost importance to us at Travesys. In order to meet the highest of expectations, we continuously improve and exceed standards of protection. Data security is the cornerstone of any travel program, with this in mind Travesys has built both its technology and company culture around the principle of keeping partner information safe and secure at all times.

Security Management.

Our policy framework was designed based on the PCI DSS and SOC 2 Type 2 certification, which serves as a model for establishing, implementing, operating, monitoring, reviewing, maintaining, and improving an information security management system. This entails documents and measures for:

Compliance with Personally Identifiable Information (PII) Laws.

As a Data Processor (based on GDPR terminology) of Personally Identifiable Information (PII), Travesys provides a platform that meets the needs of even the highest regulated markets and industries in terms of security. We provide ways to support Data Controller processes and minimise any potential compliance risk. We constantly monitor upcoming regulations globally and ensure to offer compliant solutions ahead of time

How We Protect Your Data.

In order to assure partner data safety, we offer best-in-industry safety measures both technologically and from a policy standpoint

Regular Penetration Testing

Quarterly Pen tests are conducted using third-party tools to ensure our platform is secure for all vulnerabilities

API Confidentiality

All APIs that forward personal information are protected, as they are sent over encrypted channels and API signatures in order to ensure that the data hasn’t been changed

GDPR Compliance

With GDPR compliance we ensure travellers can maintain their right to control their data and enjoy privacy as necessitated

In Transit Data Encryption

In order to guarantee the safety of in-transit data, each and every API endpoint uses an encrypted connection secured by industry-standard TLS encryption

PCI & SOC 2 Audits

Annual Assessor conducted PCI and SOC 2 audit's that carry certification to ensure all regulatory mandates are met

Business Continuity Management

As part of the Travesys Business Continuity Management system, our extended Disaster Recovery Plan lists a playbook for every expectable security risk, emergency, or disaster

How We Protect Your Data.

In order to assure partner data safety, we offer best-in-industry safety measures both technologically and from a policy standpoint

Regular Penetration Testing

Quarterly Pen tests are conducted using third-party tools to ensure our platform is secure for all vulnerabilities

API Confidentiality

All APIs that forward personal information are protected, as they are sent over encrypted channels and API signatures in order to ensure that the data hasn’t been changed

GDPR Compliance

With GDPR compliance we ensure travellers can maintain their right to control their data and enjoy privacy as necessitated

In Transit Data Encryption

In order to guarantee the safety of in-transit data, each and every API endpoint uses an encrypted connection secured by industry-standard TLS encryption

PCI & SOC 2 Audits

Annual Assessor conducted PCI and SOC 2 audit's that carry certification to ensure all regulatory mandates are met

Business Continuity Management

As part of the Travesys Business Continuity Management system, our extended Disaster Recovery Plan lists a playbook for every expectable security risk, emergency, or disaster

Let's get down to some Business.

Our Accreditations.
PCI-Travesys.png
SOC-2-Logo-–-1-1.png
Iata-Logo-–-1.png
Atol-Protected-Logo-–-1.png
Visa-Logo-–-1.png
Our Accreditations.
PCI-Travesys.png
SOC-2-Logo-–-1-1.png
Iata-Logo-–-1.png
Atol-Protected-Logo-–-1.png
Visa-Logo-–-1.png