“Does my backup services business need to be PCI compliant?”

May 6, 2014 • Published Categories PCI 101Tags , , , ,

Question: I own a small MSP service that offers backup services for customers’ servers. Some of our hospitality customers for which we do nothing but this type of backup believe we need to be PCI compliant. All the data is fully encrypted before it is sent … Read more

“We would like to request a credit card number in advance of an event…”

April 17, 2014 • Published Categories Best PracticesTags , , , , , , , , ,

Question: We are developing our payment policy for a venue rental business and would like to request a credit card number to be submitted 14 days prior to the event to have on file for any damages that might occur during the event. Will I be … Read more

Target’s 3DES Encryption Statement: What Does It Tell Us? What Information is Missing? And Where Does PCI Apply?

December 31, 2013 • Published Categories Industry TopicsTags , , , , , , ,

On December 27, Target issued an official statement about hackers’ access to encrypted debit card PIN data along with the payment card numbers accessed during its breach event. Some have wondered whether Target’s claims regarding the encrypted PIN codes are accurate. Although Target has not provided us … Read more

The PCI SSC Releases New Mobile Payment Acceptance Security Guidelines for Developers and Device Manufacturers

September 25, 2012 • Published Categories Archive, Industry TopicsTags , , , , , , , ,
New Mobile Payment Acceptance

The Payment Card Industry Security Standards Council (PCI SSC) released new guidelines during its recent Community Meeting in Orlando. The new Mobile Payment Acceptance Security guidelines apply to the payment applications identified in Mobile Payment Acceptance Application Category 3, and they give software developers and mobile … Read more

The PCI SSC Releases its P2PE SAQ

July 5, 2012 • Published Categories Archive, Industry TopicsTags , , , , , , , , , , , , , ,

In May the PCI Security Standards Council (SSC) published a fact sheet to offer guidance for merchants evaluating technology to accept payments using a smartphone or iPad/tablet. Read More