PCI DSS (Payment Card Industry Data Security Standard)
PCI DSS applies to any organization that stores, processes, and/or transmits cardholder data. It is the responsibility of the organization to protect the cardholder’s Account Data. Account Data includes Cardholder Data and Sensitive Authentication Data (magnetic strip, card verification codes, PINs).
Do any of these questions apply?
- Are you abiding by transmission security requirements?
- Do you track and monitor access to your systems?
- Do you encrypt credit card data?
- Do you conduct comprehensive vulnerability scans?
Answering “NO” to any of these questions places you at risk to outside attacks and large fines. Each bank and credit card company creates their own monetary penalty structure and these fines range from $5,000.00 to $500,000.00. Unexpected fines can be detrimental to any size business.
CareTech’s consulting staff is well versed in PCI DSS protocols. PCI DSS provides a framework of Control Objectives that list the necessary technology equipment, setup guidelines, and in-house security policies. Let us provide your business with the peace of mind that every effort has been made to protect your client data and prevent unnecessary fines.