NCR eCommerce Managed Hosting Facility Achieves International Information Security Management Certification

ISO/IEC 27001 certification recognizes commitment to secure protection, availability and confidentiality of customers’ business-critical information

DAYTON, Ohio – NCR Corporation (NYSE: NCR) today announced its eCommerce Managed Hosting Services facility has achieved ISO/IEC 27001 certification recognizing the data center for meeting the International Standards Organization’s exacting specifications for information security management.

NCR’s eCommerce Managed Hosting Services provides maximum secure protection of customer data for businesses running critical applications over the Internet. Achievement of the ISO/IEC 27001 certification ensures that the NCR facility has thoroughly proven to have implemented safeguards and procedures to identify, manage and minimize the capacity for threats to customer and consumer information.

A leader in offering hosted solutions to businesses worldwide since 1960, NCR is experienced in the management of customer transaction data across a variety of industries, including financial, retail, travel, hospitality, healthcare and entertainment. The highly secure NCR eCommerce Managed Hosting Services facility was designed and built as a data center operations structure to ensure maximum security and high availability of data for all customers.

“The ISO/IEC 27001 certification helps facilitate NCR’s international expansion strategy to provide businesses in Europe and Asia Pacific with hosting solutions that deliver value for existing customer applications and help drive future capabilities including self-service and mobile transactions,” said Chris Shea, NCR vice president, WCS Global Services Operations.

“This certification explicitly underscores our ability to securely manage a customer’s confidential data, provide highly compliant hosting services and address additional industry specific certifications and requirements.”

The eight-month ISO/IEC 27001 certification process involved comprehensive process documentation and numerous site audits by ISO inspection teams and BSI Management Systems, a management systems certification body.

“BSI was enthusiastic about the commitment and resources NCR implemented to ensure compliance with the rigorous ISO/IEC 27001 certification requirements,” said Todd VanderVen, president of BSI Management Systems America. “With high standards of security, availability and risk management practices in place, NCR is well-positioned to provide customers with information security management processes and has established a structured framework to promote continuous improvement in meeting the specific needs of its diverse customers.”

In addition to meeting the ISO/IEC 27001 certification requirements, NCR conducts annual Type II SAS 70 reviews and adheres to compliance standards from the Payment Card Industry and the Health Insurance Portability and Accountability Act for its eCommerce Managed Hosting Services.

About NCR Corporation
NCR Corporation (NYSE: NCR) is a global technology company leading how the world connects, interacts and transacts with business. NCR’s assisted- and self-service solutions and comprehensive support services address the needs of retail, financial, travel, healthcare, hospitality, entertainment, gaming and public sector organizations in more than 100 countries. NCR (www.ncr.com) is headquartered in Dayton, Ohio.

# # #

NCR is a trademark of NCR Corporation in the United States and other countries.