PCI

Compliance

PCI Compliance

If you store or process credit card data, PCI is important to you. The Payment Card Industry Data Security Standard is not a law but instead, it is a thorough set of rules put forth by the five major issuers of credit cards.

The PCI Data Security Standard specifies twelve requirements for compliance, organized into six logically related groups called “control objectives.”

These six groups are:PCI - credit card
1. Build and Maintain a Secure Network and Systems
2. Protect Cardholder Data
3. Maintain a Vulnerability Management Program
4. Implement Strong Access Control Measures
5. Regularly Monitor and Test Networks
6. Maintain an Information Security Policy

As Our Customer

For complete compliance, the GDV customer primary environment must be PCI compliant. If an audit or certification program has not been undertaken, we recommend completing the Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance, found here.

GDV customers who are subject to the PCI DSS should notify GDV of this requirement and their intention and plan to comply.

GDV and PCI

GDV layers our compliance with PCI through combining your compliance with our adherence to a thorough list of internal controls and policies.

 

The 15th Annual GDV Crawfish Boil!

If it’s springtime, then there’s likely a spicy scent to the air around the Global Data Vault. We were happy to celebrate our 15thAnnual Crawfish Boil surrounded by our families, friends, business partners and customers at the Texas Ale Project in Downtown Dallas....

The Cyber Kill Chain

Lockheed Martin, known for defense and security technologies, among other things, has developed a new “kill chain” method of describing each stage of an cyber attack. This CSO article talks in depth about the Cyber Kill Chain method and says, “each stage presents an...

Ransomeware Attack in Atlanta

The recent cyber attack on the municipal systems at the city of Atlanta shows the vulnerability of city governments