Attention: Services Providers - Clients want to know how you protect their data
It would be careless to do business with someone before doing your homework. You need to make sure you understand exactly what you are getting into and that the other party is open, honest and acting with an acceptable standard of care. Conducting due diligence is common practice with today's business interactions. You see investigations into a company's financials, personnel, and business practices. With the cyber security environment we have today, IT and information security reviews during due diligence investigations are being given a higher priority as well.
Mastercard Requires QSA or ISA for Level 2 Merchants
The standard for handling credit card data is set by the PCI (Payment Card Industry) SSC (Security Standards Council). However, each card brand, Visa, Mastercard, AmEx, Discover and JCB, manages its own specific compliance program. Requirements for becoming compliant and reporting are set by each card brand. Even though each programs requirements are similar, there are slight variations in certain particular details as to how they apply to different merchants.
Announcement: New Seattle, WA Office
Aeris Secure is expanding once again. We are now offering our comprehensive PCI/EI3PA compliance and auditing services in the Seattle, Washington area. The new office will service Seattle, Tacoma, Bellevue, and Olympia, WA, as well as the greater Pacific Northwest region.
Navigating PCI Compliance with A.C.E.
Many parts of the PCI Data Security Standard are technical in nature, and some may even be hard to understand without a certain level of computer experience. We are here to relieve stress and pain and make it easy for you to achieve and maintain PCI compliance. ACE, our security compliance solution, walks you through the PCI compliance process, putting tasks in easy-to-understand terms, so that you won’t get bogged down in technical jargon. ACE enables you to concentrate on what you do best — running your business and serving your customers.
PCI Frequently Asked Questions (FAQ)
The Payment Card Industry Security Standards Council (PCI SSC) is the regulating body established by the credit card brands to institute and enforce procedures which enhance the security of credit card transactions. All merchants and other organizations that transact business using credit cards are required to follow the procedures established by the PCI Council and verify the same. The overriding governing document of the Council is the PCI DSS (Data Security Standard).