PCI Compliance standards, otherwise known as the Payment Card Industry Compliance standards, were set up by a PCI council on Dec. 15th, 2004. These standards were put into place in order to protect an individual’s credit and debit card information. As defined by PCI Compliance Council, these standards were formed to decrease credit card fraud. The PCI Compliance standards are evaluated for all companies each year by a QSA (qualified security assessor). In the month of September, 2006, the PCI Compliance standard was updated to version 1.1.
The objective of PCI Compliance is to build and maintain a secure network. This is being performed by maintaining a highly active firewall to protect the card holder’s data. Passwords should be changed regularly, and default passwords as set by the company should not be used.
The pci compliance standards affect all merchant organizations no matter how many transactions they accomplish at their business. There are different merchant levels given by the pci compliance council to businesses. While these levels are based on how many transactions the company does, it is important to stress that no matter how many transactions are made, theses standards and rules still apply. Higher level merchants, like merchant 4 or above may have additional rules and regulations to follow. Any business that accepts or stores cardholder data must follow the pci compliance standards. It is very important, so don’t overlook it.
The physical access to card holder data should be restricted. All card holder data needs to be kept safe and secure. Proper testing and monitoring of networks should be done and maintained. Tracking and monitoring all access to network resources and cardholder data also needs to be accomplished. Security systems need to be tested properly and frequently.
One important rule of the PCI compliance standards is that the access to card holder data should be restricted. Proper testing and monitoring of networks should be done and maintained. Tracking and monitoring all access to network resources and cardholder data also needs to be accomplished. Security systems need to be tested properly and frequently.
Learn more about thepci compliance standards. Stop by Josie Lynn’s site where you can find out all about the pci compliance standards.