PCI DSS – Page 4 – WindowsTechs.com

PCI-DSS Compliance

Posted on January 22, 2023 by LostAllIt

Recently I had to implement a website that had to be PCI-DSS compliant.
I am only transferring card details over SSL (encrypted with a random RSA 2048 key generated each time, as well.) The data is then transferred to Stripe. Nothing is st… Continue reading PCI-DSS Compliance→

Which documents may be used to demonstrate compliance with requirement 12.8.2 of PCI DSS 3.2.1?

Posted on January 18, 2023 by ChocoLatte

Does an PCI AoC substitute the written agreement that the PCI DSS requirement 12.8.2 request?
If not, how is the best way to comply? Thanks in advance.

Continue reading Which documents may be used to demonstrate compliance with requirement 12.8.2 of PCI DSS 3.2.1?→

Which documents may be used to demonstrate compliance with requirement 12.8.2 of PCI DSS 3.2.1?

Posted on January 18, 2023 by ChocoLatte

Does a PCI AoC substitute the written agreement that the PCI DSS requirement 12.8.2 requests?
If not, what is the best way to comply?

Continue reading Which documents may be used to demonstrate compliance with requirement 12.8.2 of PCI DSS 3.2.1?→

Busting compliance myths

Posted on November 9, 2022 by Helga Labus

In this interview for Help Net Security, Troy Fine, Senior Manager of Cybersecurity Risk Management at Drata, talks about the challenges of data compliance and what companies must do to achieve it. Compliance has been an important factor for all busine… Continue reading Busting compliance myths→

Is LINKT non-PCI compliance and if so how do I report it

Posted on October 12, 2022 by Ross

I have received an email from LINKT (part of LendLease) stating I need to update my credit card details. In this email it says "…details such as expiry date or CVV might be saved incorrectly or out of date" This is identical t… Continue reading Is LINKT non-PCI compliance and if so how do I report it→

PCI DSS 4.0 changes help organizations protect payment card data

Posted on July 11, 2022 by Help Net Security

The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (PCI DSS). PCI DSS is a global standard that provides a baseline of technical and operational requirements designed to protect account data. This Help … Continue reading PCI DSS 4.0 changes help organizations protect payment card data→

PCI DSS 4.0 released, addresses emerging threats and technologies

Posted on July 5, 2022 by Help Net Security

The PCI Security Standards Council (PCI SSC) published version 4.0 of the PCI Data Security Standard (PCI DSS). PCI DSS is a global standard that provides a baseline of technical and operational requirements designed to protect account data. To provide… Continue reading PCI DSS 4.0 released, addresses emerging threats and technologies→

Does PCI DSS allows/restrict bulk sending of cards?

Posted on June 8, 2022 by Leonardo

Does PCI DSS allows/restrict bulk sending of cards? eg: Im buying gift cards for my 200 employees, can I have them delivered to my HR?
Are there addendums or restrictions on this?

Continue reading Does PCI DSS allows/restrict bulk sending of cards?→

Validating and storing credit card data for retrieval later

Posted on May 26, 2022 by Tony

I need to validate and store credit card information (name, card number, expiration date, CVC) for retrieval at a later date. Once retrieved, the data will be used for manual processing on a separate system.
I have been told countless time… Continue reading Validating and storing credit card data for retrieval later→

PCI DSS 4.0: Meeting the evolving security needs of the payments industry

Posted on April 22, 2022 by Help Net Security

In this video for Help Net Security, Sean Smith, Practice Manager, PCI Advisory Services at Optiv, discusses the new PCI DSS 4.0 requirements. At the end of March 2022, the PCI Council released the PCI DSS 4.0. The current version of PCI DSS will still… Continue reading PCI DSS 4.0: Meeting the evolving security needs of the payments industry→