EI3PA What?

EI3PA stands for Experian Independent 3rd Party Assessment. Developed by Experian in 2009, and closely based on the Payment Card Industry Data Security Standard (PCI DSS), IE3PA utilizes the PCI DSS Audit Framework (Currently Version 2.0) as a standard for data handling and security requirements that Experian resellers must comply with. EI3PA establishes 12 primary requirements for organizations to assess their security measures in protecting consumer data. Any reseller that transmits, stores, processes, or provides consumer credit data from Experian is subject to EI3PA and must comply with and attest to compliance as performed by a third party Qualified Security Assessor (QSA).

Software, Data Redundancy, and Security

Our software applications use industry standard, state-of-the-art technology to provide an intuitive interface in a light, browser-based solution; along with SQL based database access for quick and reliable data storage and retrieval.

Database server mirroring across different geographically located data centers, along with multiple daily and nightly backups, provides realtime redundancy for maximum data protection. All hardware and software is firewall protected using PCI compliant data centers for the highest standard of data protection and security. CBC is annually certified to meet Experian's EI3PA security requirements and uses multi-factor authentication for user access.