COMPLIANCE

SIA pays particular attention to be comply with laws and sector specific regulations.

To achieve this objective, SIA has developed and maintains a compliance management system as integral part of company internal management system in order to prevent not compliant risks.

SIA Processes and Management Systems Download (PDF 1.07 MB)
The SIA Compliance Management System Download (PDF 361.88 KB)
Business Continuity Management System Download (PDF 587.7 KB)
Information Security Management System Download (PDF 380.97 KB)
QUALITY

Pertains on the compliance with the standard ISO 9001 which provides for the implementation and monitoring of a Quality Management System for the definition, implementation and control of a system of company processes aimed at improving customer satisfaction.

SIA ISO 9001 Certification Download (PDF 638.47 KB)

Certificated subsidiaries: SIA CE, TSP

SECURITY

Pertains on the compliance with the standard ISO / IEC 27001 which provides for the implementation and monitoring of an Information Security Management System for the definition, implementation and monitoring processes to ensure the objectives of confidentiality, integrity, availability and compliance of the corporate information.

SIA ISO 27001 Certification Download (PDF 447.16 KB)

Certificated subsidiaries: SIA CEPerago

BUSINESS CONTINUITY

Pertains on the the compliance with the standard ISO 22301 which provides for the implementation and monitoring of a Business Continuity Management System for the definition, implementation and control processes to ensure the continuity of business services.

SIA ISO 22301 Certification Download (PDF 334.95 KB)
PAYMENT CARD INDUSTRY - DATA SECURITY STANDARD (PCI-DSS)

Pertains on the compliance with the PCI DSS security standard that provides for the protection of information relating to debit cards and credit cards issued by the international VISA, MasterCard, Amex, JCB and Discover. 
SIA compares in the list of certificated companies published on VISA Europe Member Agent Weblisting in Service Providers and in MASTERCARD website, as follows: Compliant Service Provider List

SIA PCI DSS Certification Download (PDF 69.04 KB)

Certificated subsidiaries: SIA CE, TSP

SIA has two ISAE 3402 Type II reports which express a positive opinion on the effectiveness and effective functioning of controls in place during the period of verification with reference to the control objectives defined. The contents are verified by an indipendent auditor (currently Deloitte):

Report:
ISAE 3402 Type 2 SIA Issuing, Acquiring & Supporting Services
Company:
SIA

Report:      
ISAE 3402 Type 2 T2S Connectivity Services
Company:
SIA / COLT

CONSORZIO BANCOMAT

Currently SIA has the following approvals:

  • 103020 - Data preparation authorization and PIN printing
  • 402010 - Acquiring and ATM terminal management
  • 403010 - Authorization for company ATM’s
  • 404010 - Authorization for not company ATM’s
  • 405010 - Acquiring and POS terminal management
  • 407010 - Authorization for not company POS’s