- No one is immune from potential security breaches.
- Cyber crime is a significant issue in this country and world.
- The payment card industry (PCI) has been particularly vulnerable.
- Adopting “best practices” to protect card holder data can make a positive impact on your business.
Were you a Target shopper who had to check your credit card statement regularly or request a credit report after the announcement of the Target Data Breach?
Or even worse, were you a victim of credit card fraud due to this data breach? This credit card fraud incident is yet another widespread reminder of how vulnerable we all are to data breaches and the impact of identity theft that could result.
Data breaches hit closer to home than we like to think. It’s not only retailers that are affected; recent reports of higher education institutions experiencing data breaches have been hitting the news as well. These reports contain details of reputation risk and significantly high costs for resolving the current issues created and prevention measures for the future. These are not the types of news headlines you want to be a part of. NO ONE DOES!
What is PCI DSS?
Officially, it is the Payment Card Industry Data Security Standard. The PCI Security Standards Council is an open global forum, launched in 2006, that is responsible for the development, management, education and awareness of PCI Security Standards, including:
- Data Security Standard (PCI DSS)
- Payment Application Data Security Standard (PA-DSS)
- PIN Transaction Security (PTS)
The council’s five founding global payment brands -- American Express, Discover Financial Services, JCP International, MasterCard, Visa Inc -- have agreed to incorporate PCI DSS as the technical requirements of each of their data security compliance programs. These standards are organized around seven distinct subject areas and twelve high level requirements.
This is a complicated and serious matter. However, the good news is that there are “best practices” and evolving standards that give us a security framework and a roadmap we can follow.
To learn more about the PCI DSS standards, download the free eBook below which focuses on:
- Responsibilities required of any institution that accepts payment by credit cards
- Surprising ways that cardholder data may be compromised
- Best practices you can implement
- Summary of the changes from 2.0 and 3.0 and how they may affect your institutions compliance