{"id":6333,"date":"2012-09-19T08:46:31","date_gmt":"2012-09-19T14:46:31","guid":{"rendered":"http:\/\/www.barcodesinc.com\/news\/?p=6333"},"modified":"2019-09-13T14:17:35","modified_gmt":"2019-09-13T20:17:35","slug":"pci-compliance-explained","status":"publish","type":"post","link":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/","title":{"rendered":"PCI Compliance Explained!"},"content":{"rendered":"<p><span style=\"color: #000000;\"><a href=\"https:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss.jpg\"><img decoding=\"async\" loading=\"lazy\" class=\"alignright  wp-image-6336\" style=\"margin-left: 20px; margin-bottom: 20px;\" title=\"padss\" src=\"http:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss.jpg\" alt=\"padss\" width=\"315\" height=\"211\" align=\"right\" srcset=\"https:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss.jpg 500w, https:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss-300x200.jpg 300w\" sizes=\"(max-width: 315px) 100vw, 315px\" \/><\/a><a href=\"https:\/\/www.barcodesinc.com\/solutions\/market-applications\/pos.htm\">Point-of-Sale businesses<\/a> are paranoid, with good reason, about protecting sensitive customer and company information. Financial institutions require that any company that stores, processes or transmits credit card information complies with the PCI-DSS (Payment Card Industry, Data Security Standards).<\/span><\/p>\n<p><span style=\"color: #000000;\">Companies that fail to comply are subject to fines, lawsuits, and can even be banned from processing credit cards. Even worse, companies that are breached can find themselves in the news headlines, significantly impacting goodwill with customers, partners and shareholders. Ensuring your <a href=\"https:\/\/www.barcodesinc.com\/cats\/point-of-sale-system\/\">POS system<\/a> and <a href=\"https:\/\/www.barcodesinc.com\/cats\/wireless-communications.htm\">wireless infrastructure<\/a> are in compliance is crucial.<\/span><\/p>\n<p><span style=\"color: #000000;\">The objective of the Payment Card Industry (PCI) Security Standards is to protect cardholder data. The standards are developed and published by the PCI Security Standards Council (SSC), which consists of hundreds of industry participants who have a vested interested in reducing vulnerabilities in the card-processing ecosystem.<\/span><\/p>\n<p><span style=\"color: #000000;\"><!--more-->The PCI-SSC was founded by the following five global payment brands:<\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">American Express<\/span><\/li>\n<li><span style=\"color: #000000;\">Discovery Financial Services<\/span><\/li>\n<li><span style=\"color: #000000;\">JCB International<\/span><\/li>\n<li><span style=\"color: #000000;\">MasterCard Worldwide<\/span><\/li>\n<li><span style=\"color: #000000;\">Visa, Inc.<\/span><\/li>\n<\/ul>\n<div>\n<p><span style=\"color: #000000;\">The PCI SSC publishes the following standards:<\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">PCI Data Security Standards (DSS): Applies to any entity that stores, processes, and\/or transmits cardholder data. The standard covers technical and operational components include in or connected to cardholder data. If a business accepts or processes payment cards, it must comply with the PCI DSS.<\/span><\/li>\n<li><span style=\"color: #000000;\">PIN Transaction Security Requirements (PTS): Applies to manufacturers who develop <a href=\"https:\/\/www.barcodesinc.com\/cats\/payment-terminals\/\">PIN (personal identification number) entry terminals<\/a> used for payment card financial transactions.<\/span><\/li>\n<li><span style=\"color: #000000;\">Payment Application Data Security Standards (PA-DSS): Applies to software developers and integrators of applications that store, process or transmit cardholder data as part of authorization or settlement.<\/span><\/li>\n<\/ul>\n<div><span style=\"color: #000000;\">Merchants who process credit card transactions are responsible for complying with the PCI-DSS. \u00e2\u20ac\u0153PCI Compliance\u00e2\u20ac\u009d is achieved when the merchant successfully demonstrates (via external audits or self-certification) that their entire system and process complies with the 12 requirements of the PCI-DSS.Version 2.0 of the PCI-DSS was released in October, 2010. The PCI-DSS provides a baseline of technical and operational requirements designed to protect cardholder data. The PCI-DSS is organized around the following high-level goals and requirements:<\/span><\/div>\n<div><\/div>\n<div><span style=\"color: #000000;\"><strong>Build and Maintain a Secure Network \u00c2\u00a0<\/strong><\/span><\/div>\n<ul>\n<li><span style=\"color: #000000;\">Install and maintain a firewall configuration to protect cardholder data.<\/span><\/li>\n<li><span style=\"color: #000000;\">Do not use vendor-supplied defaults for system passwords and other security parameters.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong>Protect Cardholder Data<\/strong><\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Protect stored cardholder data.<\/span><\/li>\n<li><span style=\"color: #000000;\">Encrypt transmission of cardholder data across open, public networks.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong>Maintain a Vulnerability Management Program <\/strong><\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Use and regularly update anti-virus software or programs.<\/span><\/li>\n<li><span style=\"color: #000000;\">Develop and maintain secure systems and applications.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong>Implement Strong Access Control Measures <\/strong><\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Restrict access to cardholder data by business need to know.<\/span><\/li>\n<li><span style=\"color: #000000;\">Assign a unique ID to each person with computer access.<\/span><\/li>\n<li><span style=\"color: #000000;\">Restrict physical access to cardholder data.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong>Regularly Monitor and Test Networks<\/strong><\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Track and monitor all access to network resources and cardholder data.<\/span><\/li>\n<li><span style=\"color: #000000;\">Regularly test security systems and processes.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong>Maintain an Information Security Policy <\/strong><\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Maintain a policy that addresses information security for all personnel.<\/span><\/li>\n<\/ul>\n<\/div>\n<div><span style=\"color: #000000;\">While the standards are driven by the PCI SSC, each payment card financial institution has its own program for compliance. In general, compliance can be certified by the merchant through a Self-Assessment Questionnaire (SAQ) or through a Qualified Assessor such as a QSA (Qualified Security Assessor) or ASV (Approved Scanning Vendor).It is the merchant\u00e2\u20ac\u2122s responsibility to work with their payment card financial institution to determine what form of certification is required.<\/span><\/div>\n<div><\/div>\n<div><span style=\"color: #000000;\">For more help on making sure your business and POS hardware meets PCI compliance, contact us at Barcodes Inc.<\/span><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Point-of-Sale businesses are paranoid, with good reason, about protecting sensitive customer and company information. Financial institutions require that any company that stores, processes or transmits credit card information complies with the PCI-DSS (Payment Card Industry, Data Security Standards). Companies that fail to comply are subject to fines, lawsuits, and can even be banned from processing [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[22,224],"tags":[205,340,335,171],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v20.0 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>PCI Compliance Explained! - Barcoding News<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PCI Compliance Explained! - Barcoding News\" \/>\n<meta property=\"og:description\" content=\"Point-of-Sale businesses are paranoid, with good reason, about protecting sensitive customer and company information. Financial institutions require that any company that stores, processes or transmits credit card information complies with the PCI-DSS (Payment Card Industry, Data Security Standards). Companies that fail to comply are subject to fines, lawsuits, and can even be banned from processing [&hellip;]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/\" \/>\n<meta property=\"og:site_name\" content=\"Barcoding News\" \/>\n<meta property=\"article:published_time\" content=\"2012-09-19T14:46:31+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2019-09-13T20:17:35+00:00\" \/>\n<meta property=\"og:image\" content=\"http:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss.jpg\" \/>\n<meta name=\"author\" content=\"BarcodesInc\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"BarcodesInc\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/\",\"url\":\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/\",\"name\":\"PCI Compliance Explained! - Barcoding News\",\"isPartOf\":{\"@id\":\"https:\/\/www.barcodesinc.com\/news\/#website\"},\"datePublished\":\"2012-09-19T14:46:31+00:00\",\"dateModified\":\"2019-09-13T20:17:35+00:00\",\"author\":{\"@id\":\"https:\/\/www.barcodesinc.com\/news\/#\/schema\/person\/4887305f61b70f8fa89a8ca7343ec6d4\"},\"breadcrumb\":{\"@id\":\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.barcodesinc.com\/news\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Point of Sale\",\"item\":\"https:\/\/www.barcodesinc.com\/news\/category\/point-of-sale\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"PCI Compliance Explained!\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.barcodesinc.com\/news\/#website\",\"url\":\"https:\/\/www.barcodesinc.com\/news\/\",\"name\":\"Barcoding News\",\"description\":\"Barcode, Auto-ID, Point of Sale and RFID News\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.barcodesinc.com\/news\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.barcodesinc.com\/news\/#\/schema\/person\/4887305f61b70f8fa89a8ca7343ec6d4\",\"name\":\"BarcodesInc\",\"sameAs\":[\"http:\/\/www.barcodesinc.com\"],\"url\":\"https:\/\/www.barcodesinc.com\/news\/author\/admin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"PCI Compliance Explained! - Barcoding News","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/","og_locale":"en_US","og_type":"article","og_title":"PCI Compliance Explained! - Barcoding News","og_description":"Point-of-Sale businesses are paranoid, with good reason, about protecting sensitive customer and company information. Financial institutions require that any company that stores, processes or transmits credit card information complies with the PCI-DSS (Payment Card Industry, Data Security Standards). Companies that fail to comply are subject to fines, lawsuits, and can even be banned from processing [&hellip;]","og_url":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/","og_site_name":"Barcoding News","article_published_time":"2012-09-19T14:46:31+00:00","article_modified_time":"2019-09-13T20:17:35+00:00","og_image":[{"url":"http:\/\/www.barcodesinc.com\/news\/wp-content\/uploads\/2012\/09\/padss.jpg"}],"author":"BarcodesInc","twitter_card":"summary_large_image","twitter_misc":{"Written by":"BarcodesInc","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/","url":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/","name":"PCI Compliance Explained! - Barcoding News","isPartOf":{"@id":"https:\/\/www.barcodesinc.com\/news\/#website"},"datePublished":"2012-09-19T14:46:31+00:00","dateModified":"2019-09-13T20:17:35+00:00","author":{"@id":"https:\/\/www.barcodesinc.com\/news\/#\/schema\/person\/4887305f61b70f8fa89a8ca7343ec6d4"},"breadcrumb":{"@id":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.barcodesinc.com\/news\/pci-compliance-explained\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.barcodesinc.com\/news\/"},{"@type":"ListItem","position":2,"name":"Point of Sale","item":"https:\/\/www.barcodesinc.com\/news\/category\/point-of-sale\/"},{"@type":"ListItem","position":3,"name":"PCI Compliance Explained!"}]},{"@type":"WebSite","@id":"https:\/\/www.barcodesinc.com\/news\/#website","url":"https:\/\/www.barcodesinc.com\/news\/","name":"Barcoding News","description":"Barcode, Auto-ID, Point of Sale and RFID News","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.barcodesinc.com\/news\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.barcodesinc.com\/news\/#\/schema\/person\/4887305f61b70f8fa89a8ca7343ec6d4","name":"BarcodesInc","sameAs":["http:\/\/www.barcodesinc.com"],"url":"https:\/\/www.barcodesinc.com\/news\/author\/admin\/"}]}},"_links":{"self":[{"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/posts\/6333"}],"collection":[{"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/comments?post=6333"}],"version-history":[{"count":6,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/posts\/6333\/revisions"}],"predecessor-version":[{"id":22102,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/posts\/6333\/revisions\/22102"}],"wp:attachment":[{"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/media?parent=6333"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/categories?post=6333"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.barcodesinc.com\/news\/wp-json\/wp\/v2\/tags?post=6333"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}