What is PCI Compliance?
Payment Card Industry Data Security Standard is a set of standards to protect customer credit and debit card data information. Many banks require a PCI compliance check by a third party to avoid additional processing fees.
•PCI Compliance Information
Helping Non-Profit become PCI Compliant
A longtime client of CORE Utilities needed help making their 14 retail stores located in Sonoma, Napa and Mendocino counties as well as their on-line store PCI compliant. With a small budget, CORE designed and installed all necessary hardware and software required for their client to become PCI compliant.
CORE manages the following components are required for their client to maintain compliance:
- -Install and keep updated a firewall between the public network and the payment card data
- -Change vendor-supplied passwords that come with network and payment processing equipment
- -Protect any customer data stored for business purposes or regulatory purposes
- -Encrypt all transmissions of customer data over any public network
- -Maintain antivirus software in all of your computers
- -Deploy only secure card processing applications and systems
- -Limit access to the customer payment data to as few people as possible on the “need-to-know” basis within your business.
- -Use building entry authentication such as visitor and employees badges with identification to limit access to stored data
- -Keep restricted physical access to business computers and customer data
- -Regularly test security applications and any PCI security processes that you have in place
- -Keep all employees informed about your information security policies