Tell me. How important is PCI Compliance to your organization?
The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security for organizations that handle branded credit cards from the major card schemes including Visa, MasterCard, Amex, Discover and JCB.
The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards. The standard was created to increase controls around cardholder data to reduce credit card fraud. Validation of compliance is performed annually, either by an external Qualified Security Assessor (QSA) that creates a Report on Compliance (ROC) for organizations handling large volumes of transactions.
Data Security through PCI Compliance is probably one of the most important attributes to consider when selecting a business partner who accesses your consumer’s data. Having Compliance processes in place are very important, but until an organization goes through an extensive audit, there are definitely going to be major gaps.
My recommendation is to contact a QSA right away and get started on your PCI Compliance Certification.
What do you think?