What our clients say

quote icon

“Advantio has been providing us with exemplary cyber security consulting services for over 8 years, particularly in the PCI DSS domain. Always exceeding our expectations, we were impressed with their proactive and thoughtful approach to our cyber security challenges. We are looking forward to growing our business further with Advantio’s support.”

quote icon
Esten Hoel - SVP Quality & Security at Basefarm image
SVP Quality & Security
Basefarm company logo

What is PCI Card Production and Provisioning (Logical and Physical)?

  • Addresses the security controls associated with card production and provisioning

  • Designed to strengthen physical and logical access to payment data

  • Applies to companies involved in manufacturing cards and provisioning payment data


4 steps for PCI Card Production compliance:

1 Trusted Advisor Service (TAS)

Advantio’s Trusted Advisor Service provides access to a team of solution experts who provide a primary point of contact for issues found within your compliance program during the planning, implementation, maintenance, and optimization stages and provides timely answers to evolving controls, developments in the industry or the current threat landscape.

Key features:

  • Identify your compliance goals and challenges
  • Provide our expertise to accelerate design, deployment, migration, upgrade, and implementation of a PCI Card Production compliance program.
  • Ongoing support for further issues

2 Scope Assessment Review (SAR)

This is a recommended activity focused on the identification and validation of the systems and business processes associated with the logical and physical security activities in card production and provisioning.

Key benefits:

  • Identify the assessment’s scope and list alternatives to minimize it
  • Identify necessary controls to meet PCI CP requirements
  • Helps prepare for on-site PCI CP assessment

3 Gap Analysis Review (GAR)

In this activity, Advantio will help you to compare your organization’s current environment with the PCI Card Production and Provisioning Logical and Physical requirements and identify any gaps to refine the solutions necessary for improving cardholder data protection.

Key features:

  • Provides a report on the current organization’s compliance status and readiness
  • Identifies and reports non-compliance controls with the logical and physical standards
  • Define and prioritize remediation activities

4 Formal Assessment of Compliance (FAC)

For companies that require to demonstrate compliance with PCI Card Production and Provisioning standards, Advantio offers a specialized service to assess and report the security of the environment, in which we will always endeavor to work together and transfer knowledge to your teams to future proof your compliance efforts.

Key features:

  • Assessment preparation and on-site inspection
  • Validation of the secure deployment and operation of physical and logical security requirements listed in the PCI Card Production standard
  • Documentation of assessment results and non-compliance findings’ remediation

PCI DSS in the payment industry

Whitepaper Whitepaper

Our PCI DSS whitepaper

Expert analysis of PCI DSS with a focus on ATM, retail, hospitality and issuer & acquirer environments.


By the numbers Numbers icon

  • 418 Combined years experience
  • 93%
    retention rate
  • 201 Certifications issued
    to clients in 2021
  • 242 Projects
    On Time & On Budget
    in 2021
  • 192 Penetration tests
    in 2021