We offer our customers the highest levels of assurance in data security.
Our platform and the solutions we deliver are fully certified:

ISO 27001
The industry standard for security management.


All transactions passing through our Gateway are covered
under our Level 1 certification. This is the highest standard
of data security as measured by the Payment Card

Visa Europe Merchant Agent List
We have Visa Europe Merchant Agent status for all our
payment processing and archive solutions.

Evidential Weight and Legal Admissibility of Electronic

ISO 22301
International standard for business continuity management systems. In addition to meeting information security standards, this certification ensures customers highly available services, and a guarantee that the business is able to recover with minimal loss suffered following disasters.

CSA Star
Aeriandi’s Security Disclosure is posted on the
 Cloud Security Alliance STAR registry

ISO 20000
Certification for excellence in IT Service Management.

Cyber Essentials Scheme
A government approved framework for providing basic
security assurance and risk mitigation against common
internet-based attacks. It builds upon ISO27001 and
defines a more specific subset of controls including
firewalls, system configuration, access control, malware
protection and patch management.

A trusted partner for organisations across the UK

There are already over 20,000 call centre operatives using our software throughout the UK, representing household brands in sectors such as retail, telecommunications, banking, travel and utilities. These organisations trust Aeriandi to maintain compliance and protect their sensitive customer data, 24 hours a day, seven days a week.

2014 Winner of the BT Retail Week Technology Awards Payment Project of the Year with our work with Shop Direct and Serco download case study

2015 Highly commended by ITSPA (The Internet Telephony Services Providers’ Association) for best VoIP Innovation for our work on Agent Pay and IVR Assist

We are also extremely proud of our superb customer retention rates, further proof of the service levels and customer satisfaction we pride ourselves on.


Brand value is always an important asset to any retailer and a breach of credit card data is guaranteed to severely damage that brand and reduce the value of that corporate asset. Retailers often use reputational risk mitigation and agent fraud risk mitigation as stronger business drivers for PCI compliance than the compliance itself. They realise that if they don’t have any credit card data, nobody can steal or mis-use it.


This project gave confidence to our customers for their payments, greater assurance to our banking partners in our processes and confidence to our business from reduced fraud cost and our ability to deliver innovative technology solutions.

– David Kershaw, Shop Direct


The Aeriandi Cloud Platform was designed from Day One to cater for the demanding requirements of the banking industry. With thousands of active users in this sector, for years we’ve satisfied the highest standards when it comes to service availability and data security.


The architecture of the Aeriandi Cloud Platform allows for the fast deployment of a POP (Point of Presence) anywhere in the developed world. In addition, our cloud is a hybrid of our private infrastructure and public cloud services, enabling you to deploy the level of service you need wherever you need them.


Our experts have worked closely with several household-name telcos to make their complex systems PCI compliant.

– Tom Harwood, CPO, Aeriandi


Providers of telco-managed services are often asked about PCI compliance by their existing and prospective customers. Their customers want to pass the PCI headache to the service provider and the service provider has no interest or reward for becoming PCI experts. Aeriandi partners with the largest global telcos – including BT, Vodafone, Telefonica, O2 and TalkTalk – to be both the source of PCI expertise and the provider solutions for their customers.


The utility sector processes high volumes of relatively low-value payments, and the number of telephone-based transactions is likely to increase dramatically with the adoption of smart metering. The ability of the Aeriandi Cloud Platform to handle a high volume of transactions is one of many attributes that has made us a preferred provider to the utility sector over the last 10 years.

Public Sector

The Public sector organisations have the same responsibilities to their customers as the commercial world – to protect credit card data from fraud. The Aeriandi Cloud Platform provides the easiest way to do this, ie by removing all CDEs (Cardholder Data Environments) from their infrastructures. If they don’t have any credit card data, nobody can steal or mis-use it.

Clients Include

If you are a company that stores, processes or transmits sensitive cardholder information, then you must protect that data in line with the Payment Card Industry Data Security Standard (PCI DSS) Qualified Security Assessor (QSA) companies are independent security organisations that have been qualified by the PCI Security Standards Council to validate a companies adherence to PCI DSS.

A PCI QSA is hired as an impartial third party by organisations subject to the PCI Data Security Standard to conduct a PCI assessment or advise the organisation on how to achieve PCI compliance.

List of QSAs

Bright solutions start here

We'd love to meet up and talk through your specific
requirements, but in the meantime... if you've got a question,
just enter it below and we'll get right back to you

Aeriandi Limited, Prama House,
Banbury Road, Oxford, OX2 7HT
0845 108 0308

We would love to keep in touch with you by email with any updates on products or events.

Please note we will not email you more than once a month.
Please be assured we will treat your information with the utmost care and will never sell it to other companies for marketing purposes.