Blytheco Blytheco Home Sage Software Products Sage Software Support Sage Software Training PCI DSS What is PCI DSS The Payment Application Data Security Standard How Blytheco Can Help Resources PCI for Dummies » Company Partnerships Ask a Question Contact Us

PCI Compliance for Dummies download


What is PCI DSS?

The Payment Card Industry Data Security Standard (PCI DSS) is a mandatory global standard established by the major card associations to ensure the protection of cardholder data. Based on twelve guidelines, the PCI DSS requires merchants to make their physical and virtual environments secure to ensure protection of cardholder data. As a merchant accepting credit cards as a form of payment, you are required by the card associations to adhere to the PCI DSS. The PCI DSS encompasses the security programs from Visa and MasterCard, Cardholder Information Security Program (CISP) and Site Data Protection (SDP), respectively.

The PCI DSS sets technology requirements such as the use of data encryption, end-user access control, and activity monitoring and logging. It also includes procedural mandates, such as the need to implement formal and documented security policies and vulnerability-management programs. They were developed to ensure that cardholder data is protected throughout the transaction process. Compliance with the standard applies to all types of merchants, retail, MO/TO, and Internet. All merchants need to follow best practices for storage and destruction of all paper or electronic records containing account numbers or cardholder data. Additionally, merchant service providers processing credit cards need to be PCI compliant.

Importance of PCI Data Security Standard Compliance:

It is clear that ensuring the safety of your customers' cardholder information can help your business create and maintain a positive image, enhance customer confidence and even assist in improving your bottom line. Not complying by the deadline can result in fines, adverse publicity and loss of the ability to accept payment cards. Deadlines vary – check with your bank. Visa, for example, requires that merchants use only validated Payment Applications by July 1, 2010!


Additional compliance benefits include:
By adhering to the data security regulations businesses can significantly reduce their exposure to fraud losses resulting from the theft of cardholder data.
Compliance with the programs can lead to enhanced consumer confidence, which can result in higher sales.
Compliance with the PCI DSS is mandatory. If your company, including any systems that you use and any of your service providers, are not compliant with the PCI DSS, the card associations could levy fees and fines against you and your credit card processing services could be terminated.
 
PCI for Dummies PCI Compliance for Dummies - Free Download
PCI for Dummies The credit card industry's data security standard and what it means to you - Watch it Now!
 
Questions about PCI DSS?
Contact a PCI DSS specialist at (949) 583-9500 x2500 or email