Compliance with PCI (Payment Card Industry) data security requirements is a key initiative for any company that processes credit cards. PCI, an industry-wide adoption of Visa's CISP (Cardholder Information Security Program), is the credit card industry's standard for securing cardholder data. Visa's CISP and MasterCard's Site Data Protection standards merged into the PCI standard in December 2004. In Europe, compliance is mandatory, by June 2006, for any business that stores, processes, or transmits this data. The PCI guidelines provide a list of requirements to ensure that a company is providing the requisite level of security.
Did you find this white paper useful?
Related white papers
Compliance: The California Security Breach Notification Act (SB 1386)
The California Security Breach Notification Act states that any business or agency that uses a computer to store confidential personal information about a California resident must immediately notify that individual...
Compliance: SEC 17a-4/NASD 3010/3110
In the wake of the 1928 stock market crash and the uncovering of widespread securities fraud, the U.S. Congress enacted the Securities Exchange Act of 1934. The Act seeks to...
Combating Fraud and Improving Claims Processes in SMB Insurance
IBM understands the increasing threats facing insurance companies and offers proven solutions to capitalize on a variety of risks. This executive kit contains articles related to claims management, insurance fraud...
Governance, Risk, and Compliance: A Practical Guide to Points of Entry
The implementation of new initiatives in Governance, Risk, and Compliance (GRC) may be an overwhelming prospect for many organizations. With multiple views and aspects of GRC, it can be difficult...
Stock Spam: A Classic Scam
The "pump 'n' dump" stock scam has been around since the inception of stock sales. Today, however, after a series of fumbles by amateurs, serious Internet criminals are taking this...
ICD-10: Turning Regulatory Compliance Into Strategic Advantage - Are U.S. Health Plans and Providers Ready for ICD-10 Adoption?
As if existing IT investments weren't a large enough strain on provider and payor budgets, the U.S. health care industry is facing a new challenge: ICD-10 (International Statistical Classification of...
Benchmarking IT Risk and Compliance
IT Risk and Compliance are critical issues for Senior IT Managers today. Two areas of focus will be presented beginning with the results of Symantec's IT Risk Management Report. This...
