Prepare Your Business for PCI 3.2 As promised, the PCI SSC released the new version 3.2 Self-Assessment Questionnaires (SAQs) last Friday, April 29. Although this is an incremental PCI DSS release, it’s important to understand how the 3.2 SAQs differ from those issued with PCI … Read more
How PayPal relates to PCI compliance There is some confusion among online businesses over how PayPal payment acceptance relates to PCI compliance. You may have heard that by using PayPal, your business is not subject to the PCI DSS. The truth is, even accepting PayPal payments … Read more
Whenever I type in my credit card number on a website I have never been to before, or hand my card to someone at a small business, I wonder how much thought they have put into being secure and compliant. That’s why the following inquiry … Read more
Microsoft recently announced that it is ending support for the Windows Server 2003 operating system on July 14, 2015. Windows Server 2003 is heavily relied upon in e-commerce. Therefore, if your business conducts e-commerce (i.e., has a website with a shopping cart), then it’s possible … Read more
Understanding EMV’s capabilities with the concepts of data security and PCI compliance. Many merchant acquirers, payment processors and Independent Sales Organizations (ISOs) have been reaching out to business owners to alert them of America’s 2015 migration from magstripe (i.e., “swipe”) credit/debit cards to EMV (i.e., “chip”) payment cards. … Read more
2014 has been a year filled with news about breaches – big breaches – record breaking breaches. I have spent the majority of the year talking to many people about PCI DSS version 3.0 SAQs. I have spoken to Merchant Banks, Processors, small businesses, IT … Read more