PCI DSS is a set of standards for payment account data protection that is needed if your company handles any form of credit card data.

The Payment Card Industry Data Security Standard (PCI DSS) is a globally recognised data security standard that applies to businesses that handle credit card information. It is important to ensure that companies can safely process credit and debit card payments, protecting both businesses and customers whilst also lowering the risk of card fraud.

CyberCrowd are able to ensure you have met the required standards and provide you with a formal Report of Compliance. The contents of this report will vary depending on how you many transactions are processed and also in what way they are processed.

Any companies knowingly obtaining customer’s credit card information and not holding the necessary PCI DSS accreditation could be fined and even prevented from processing card payments until such accreditation is completed.

The PC Security Standard Council list the 12 standards required to attain the accreditation they are as follows:
Install and maintain a firewall configuration to protect cardholder data

Do not use vendor-supplied defaults for system passwords and other security parameters

Protect stored cardholder data

Encrypt transmission of cardholder data across open, public networks

Use and regularly update anti-virus software or programs

Develop and maintain secure systems and applications

Restrict access to cardholder data by business need-to-know

Regularly test security systems and processes

Restrict physical access to cardholder data

Track and monitor all access to network resources and cardholder data

Assign a unique ID to each person with computer access

Maintain a policy that addresses information security for employees and contractors

CyberCrowd’s unique offering and approach guides our customers to ensure they get the right accreditation. We also work with our customers to ensure that their accreditation is maintained over the 12 months until renewal.