PCI Compliance

PCI Compliance is increasingly important to all online store owners. PlanetAuthorize™ payment solutions are designed to be PCI Compliant and can be implemented to meet the strict PCI standard. Our FraudTrust™ fraud prevention service can help ensure your business meets all payment card industry security standards.

What is PCI Compliance?

The PCI Data Security Standard (PCI DSS) was created by the major credit card companies to ensure the adoption of consistent security measures by all merchants. There are 12 requirements for meeting the PCI DSS, broken into 6 groups:

• Build and Maintain a Secure Network

  Requirement 1: Install and maintain a firewall configuration to protect cardholder data
  Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters

• Protect Cardholder Data

  Requirement 3: Protect stored cardholder data
  Requirement 4: Encrypt transmission of cardholder data across open, public networks

• Maintain a Vulnerability Management Program

  Requirement 5: Use and regularly update anti-virus software
  Requirement 6: Develop and maintain secure systems and applications

• Implement Strong Access Control Measures

  Requirement 7: Restrict access to cardholder data by business need-to-know
  Requirement 8: Assign a unique ID to each person with computer access
  Requirement 9: Restrict physical access to cardholder data

• Regularly Monitor and Test Networks

  Requirement 10: Track and monitor all access to network resources and cardholder data
  Requirement 11: Regularly test security systems and processes

• Maintain an Information Security Policy

  Requirement 12: Maintain a policy that addresses information security

For more information on PCI Compliance please visit the PCI Security Standards Council web site (https://www.pcisecuritystandards.org/ ). Web site Magazine has an excellent article related to PCI Compliance.

PlanetAuthorize
Contact Us