|
I think the PCI compliance is focused right now on Visa Tier I and Tier II vendors right now... Non-compliance carries stiff penalties so its worth your time to look the standards over carefully. Most of it is directly related to encryption and network security. Eric -----Original Message----- From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-bounces@xxxxxxxxxxxx]On Behalf Of Jones, John (US) Sent: Friday, March 30, 2007 1:45 PM To: Midrange Systems Technical Discussion Subject: RE: data retention and encryption ala tjmaxx By accepting credit cards (Visa at a minimum but pretty much everyone else is on board) your customers have probably agreed to adhere to the Payment Card Industry Data Security Standard. https://www.pcisecuritystandards.org/ has a link to the standard itself. I haven't read it through but my understanding is that the ramifications for violating PCI can include heavy fines and loss of ability to accept credit cards. I'd urge following whatever guidelines it provides.
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.