09/21/2004

Shift4 Selects Ambiron As Its Card Association Compliance Partner

Las Vegas, September 21, 2004 – Shift4 Corporation, an electronic payment technology company supplying a combination of electronic payment accounting and high-speed financial transaction connectivity to a diverse array of merchants worldwide, announced today that it has selected Ambiron to assist the company in renewing its certification with the card association data security programs. Ambiron is a leading provider of data security and compliance services to merchants and service providers who process and/or transmit credit card data.

Shift4 achieved compliance with Visa’s Cardholder Information Security Program (CISP) program last year and will be validating their continued compliance with that standard this year. In addition to Visa CISP, Ambiron will be renewing Shift4’s certification for compliance with MasterCard Site Data Protection (SDP) program and the American Express Data Security Operating Policies (DSOP). Through Ambiron’s Multi Card Compliance Program, compliance with the Discover Information Security Compliance (DISC) and Visa’s Account Information Security (AIS) programs will also be validated as part of this single assessment process.

Shift4 selected Ambiron because of their unique approach in helping organizations achieve and maintain compliance with the card association programs. “Ambiron’s Vital Signs™ service was the only program that offered us the ability to meet the requirements of all four U.S. card associations and Visa Canada,” said J.D. Oder II, Vice President of Research & Development and CTO at Shift4.

Vital Signs is Ambiron’s proprietary vulnerability management tool that offers merchants and service providers a single process for compliance with all the card association data security programs. Updated daily, Vital Signs detects the latest vulnerabilities and recommends actions to remediate any identified weaknesses. All Vital Signs users can access the online portal to view their latest scan results and compliance report.

The card association data security programs are designed to protect cardholder information during the transaction process. The data security programs are a set of best practices that merchants and service providers should adhere to in the handling and transmitting of cardholder information. MasterCard and Visa require merchants and service providers to comply with their respective data security standards. Merchants and service providers must demonstrate compliance with those standards on an annual basis. Shift4 is demonstrating their dedication to the principals of data security through their assessment against all of the card association standards.

“We take the integrity and security of the financial data we process very seriously. It is, and always has been, a constant consideration in everything we do, every product we release. We wanted to work with a security auditor that had the same dedication and beliefs. That’s why we chose Ambiron,” added Oder.

“Ambiron is proud to work with Shift4 as they raise the industry bar for data security,” said Robert McCullen, Managing Partner at Ambiron. “Shift4 recognizes the responsibility inherent in handling sensitive customer data, and we are pleased to be able to help them continue to set the very highest security standards.”

About Shift4 Corporation

Shift4, a leading developer of financial transaction processing software and services, provides web-based, real-time enterprise payment solutions for leaders in the hospitality, retail, foodservices and e-commerce markets. Through connectivity to most of the major processors, DOLLARS ON THE NET provides both high speed and low cost authorizations and settlements for credit, debit, check, private label and gift card transactions. DOLLARS ON THE NET also includes the ability to access, review and edit transactions prior to settlement, as well as a searchable, 24-month archive of transactions for reporting and charge back defense.

About Ambiron

Ambiron, LLC, provides data security and compliance services to acquirers, merchants and service providers. Ambiron is a qualified provider of data security services to all the credit card associations in the United States and Canada. Ambiron’s staff is comprised of certified security experts who deliver compliance solutions that correspond to the needs of today’s businesses. Ambiron is headquartered in Chicago with offices throughout North America.