Is Your Retail Software Compliant with PCI DSS?
Retailers processing, storing, or transmitting
credit card numbers must be PCI DSS compliant,
or risk losing their ability to process credit cards
Retailers that process, store, or transmit credit card numbers must be PCI DSS compliant, or they risk losing the ability to process credit card payments.
What Is PCI DSS?
PCI DSS is a combination of five previously separate programs:
- VISA Cardholder Information Security Program (CISP)
- MasterCard Site Data Protection
- American Express Data Security Operating Policy
- Discover Information and Compliance
- JCB Data Security Program
In December 2004, the five major credit card companies aligned and created PCI DSS version 1.0. In September 2006, the PCI DSS program was updated to version 1.1.
PCI DSS Requirements
Currently, PCI DSS specifies 12 requirements which are organized into six basic objectives:
|Build and Maintain a Secure Retail Point of Sale System||
|Protect Cardholder Data||
|Maintain a Vulnerability Management Program||
|Implement Strong Access Control Measures||
|Regularly Monitor and Test Networks||
|Maintain an Information Security Policy||
Want more information? Download the complete PCI DSS requirements to ensure that your retail point of sale system is fully compliant with PCI DSS.
When talking with different technology vendors about retail software and point of sale systems, be sure to ask about PCI DSS compliance. Not only will staying compliant potentially save you thousands of dollars in fines if your data is compromised, the PCI DSS requirements are all best practices for smart retailers.