Accreditations & compliance

It is important to us that all of our customers feel confident that our payment solutions are 100% secure and reliable, and that we are committed to handling and processing customer data responsibly.

We work very hard to ensure we meet the necessary security standards, and not just in selected areas of our business, but across all departments. This enables us to provide our customers with a comprehensive and fully reliable end-to-end data security solution.

We are certified with the following:

ISO 9001:2015 Quality Management 

ISO 27001:2013 Information Security Management 

     

We are delighted to be one of the first companies in our industry to become certified to the very latest version of the ISO 9001 Standard, demonstrating our commitment to keeping customer satisfaction at the heart of everything we do.

This certification provides the framework for a quality management system which puts customer service first, and ensures that we stay focused on continuous improvement of our business processes. It gives confidence to our customers that we have quality embedded in every part of the business, from product development and service delivery, right through to staff training and support.

To achieve the standard a business must demonstrate that they can provide products and services that consistently meet customer and regulatory requirements. They must also show that they actively enhance customer satisfaction by identifying opportunities to improve and by managing their internal systems effectively.

It is important to note that the scope of these certifications are determined by the business, and can therefore vary dramatically between all suppliers. At VMC the scope of the above registrations covers the whole business including the designing, manufacturing, selling, installing and supporting of cashless payment systems.

E-commerce & Data Security 

Our E-commerce solution and PEDs are fully PCI compliant, and have been independently assessed onsite by an external Qualified Security Assessor (QSA). The QSA reviewed all the systems and processes that are involved in protecting data and issued us with an Attestation of Compliance (AoC), which demonstrates that we fully conform to the PCI DSS guidelines for E-commerce and PED handling.

In addition, all VMC manufactured payment hardware is P2PE enhanced and we follow specific processes when handling and installing payment hardware that enables our clients or their caterer to become P2PE certified themselves.

We have also integrated the needs of the General Data Protection Regulations into our ISO 27001 certification to ensure greater protection of sensitive personal data. We take our commitment to maintaining security processes very seriously, and undertake regular additional internal audits and testing to ensure these high standards are maintained.

Health & Safety 

The health and safety of everyone we deal with is important to us and so we have appointed an external H&S Consultant, KeyOstas, to carry out annual inspections of our premises and work with us to ensure our documentation and processes are all meeting the requirements of the latest legislation.

We are also accredited by SafeContractor and Avetta, who check that our H&S procedures are of the highest standard, to ensure we are offering a uniform and safe level of service across all projects.