Important Dates

November 10
Order deadline for wave one of Visa Bill Payment promotion materials.

November 15
Order deadline for wave one of Visa Surprise, Surprise! in-branch acquisition promotion materials.

November 23
OneBridge offices will be closed. Client service can be reached at 800-322-4035. Happy Thanksgiving!

December 1
Order deadline for wave two of Visa Bill Payment promotion materials.

December 25
OneBridge offices will be closed. Client service can be reached at 800-322-4035. Have a safe and happy holiday!

January 1
OneBridge offices will be closed. Client service can be reached at 800-322-4035. Happy New Year!

Logo-for-Touchpoints---OneB

Fourth Quarter 2006
Issue XIV
 
In this issue:
Fraud-Scout
Article-Divider---Touchpoin

Regular Audits Test Security
Every year, OneBridge undergoes a variety of different audits and testing in order to help us ensure we maintain the highest levels of information security. These reviews include the SAS 70 audit, the CISP/PCI audit, and penetration testing.

SAS 70
This a very common audit for service organizations because it represents that their control activities have undergone an in-depth review. This kind of review is especially important for organizations like OneBridge who are responsible for handling sensitive cardholder data. OneBridge has undergone an annual SAS 70 since we opened in 1994. We completed our most recent in February 2006 and will be evaluated again in February 2007. Checkmark---Audit

Cardholder Information Security Program (CISP)
Visa requires all merchants, issuers, and service providers that store, process, or transmit cardholder data to comply with CISP. Part of achieving CISP compliance requires that we meet the Payment Card Industry (PCI) Data Security Standards, which are a set of standards agreed upon by all card brands. CISP compliance is valid for one year. OneBridge was one of the first processors to acheive CISP compliance in 2004 and has been compliant since. We passed our most recent audit in May of 2006.

Penetration Testing
Penetration testing is conducted quarterly by a third party auditor. It involves the active evaluation of our own information security measures. To do this, the auditors analyze our system and procedures for design weaknesses, technical flaws, and vulnerabilities by attempting to break into our network. The results are then delivered to OneBridge management and all necessary adjustments are made.

Because of the critical nature of the data we handle for our clients, information security is a top priority for OneBridge. We are constantly reviewing and updating our systems, policies, and procedures to keep them current with industry best practices.

If you have any questions about OneBridge's audit and security practices, please contact us at 1.800.322.4035.

 
Between now and mid-2007, OneBridge has five clients converting data processing systems. Because these conversions include card accounts, it is important that OneBridge be included in the process as early as possible to allow for adequate planning and testing with your new provider. We want to do all we can to support your conversion and minimize interruption to cardholders. 
 
If you are considering a conversion for 2007, or have already made a decision and haven't yet confirmed a project queue with us, please contact Susie Golden-Bishop in client services at 800-322-4035 ext. 5849 or via email at sgolden-bishop@onebridge.com.
 
Point2Point-Update

In early March of this year, CUNA Mutual published a document entitled "Plastic Card Security Best Practices." As a supplement to that document, OneBridge provided our clients with a spreadsheet that details the specific ways our products and services help clients meet those best practices and CUNA requirements.

This document was offered to clients who are insured by CUNA Mutual to assist them with completing CUNA's Plastic Card Renewal Questionnaire, which is used by CUNA to determine deductables and premiums for insurance renewals.

We have recently made updates to our spreadsheet that reflect product enhancements we have launched since March. If you would like a copy or would like to further discuss your card program security, please contact Heather Eikenberry Stoner, our new manager of risk management services. Heather can be reached at 800-322-4035 ext. 5828 or via email at heather@onebridge.com.

JM-Rewelcome

Industry News

Here are some interesting stories related to the payments industry that made headlines recently. A link to the full article is included below each summary.

Tips for weighing incentives for switching debit card processors have been compiled by the Wisconsin Credit Union League and are listed in this article.
Wisconsin League Advises on Incented Debit Card Processing Offers
cuna.org/newsnow

Following the lead of MasterCard, competitor Visa announces plans to restructure and then sell shares in an initial public offering.
Visa to Restructure, Be Publicly Traded
BusinessWeek.com

President Bush's signing of the Unlawful Internet Gambling Enforcement Act bans the use of credit cards, checks and electronic transfers to place bets on gambling websites on the internet.
President Bush Signs Law Banning Internet Gambling
pbs.org

Credit card loans have risen 8.3% over the past year to $24.5 billion. The annual growth rate is the 2.2% rate posted by banks and S&Ls over the past 12 months.
Credit Card Growth Led by Credit Unions
creditunions.com