Confused by PCI Compliance?
A recent article by Pedro Pereira in
Business Solutions” magazine provides
helpful advice to those who accept credit card payments from customers. PCI stands for Payment Card Industry. Mr. Pereira points out that PCI guidelines “…cover such things as encryption, storage, network firewalls, cardholder data access restrictions, and tracking and monitoring of access to the data.”
As the article mentions, there is a common misperception that merchants and other organizations that do not store credit card data have nothing to be concerned about vis-à-vis PCI compliance. Not true! The regulations are less burdensome, but ignoring them leaves you vulnerable. This is particularly true where credit card transactions are conducted using mobile devices.