PCI

Compliance

PCI Compliance

If you store or process credit card data, PCI is important to you. The Payment Card Industry Data Security Standard is not a law but instead, it is a thorough set of rules put forth by the five major issuers of credit cards.

The PCI Data Security Standard specifies twelve requirements for compliance, organized into six logically related groups called “control objectives.”

These six groups are:PCI - credit card
1. Build and Maintain a Secure Network and Systems
2. Protect Cardholder Data
3. Maintain a Vulnerability Management Program
4. Implement Strong Access Control Measures
5. Regularly Monitor and Test Networks
6. Maintain an Information Security Policy

As Our Customer

For complete compliance, the GDV customer primary environment must be PCI compliant. If an audit or certification program has not been undertaken, we recommend completing the Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance, found here.

GDV customers who are subject to the PCI DSS should notify GDV of this requirement and their intention and plan to comply.

GDV and PCI

GDV layers our compliance with PCI through combining your compliance with our adherence to a thorough list of internal controls and policies.

 

Ransomware: What You Need to Know Now

The internet is an amazing, useful and often wonderful thing. It’s also a giant mess. For every resource it gives your business that helps you succeed, it also offers a threat. Not-safe-for-work embarrassments aside, there are some genuine dangers on the internet that...

2018 Was Our Best Year Yet!

The new year is upon us, and 2018 is now firmly in the rearview mirror. It only seems right to take a moment and reflect on everything we did and accomplished over the last 12 months. This past year proved to be a big one for Global Data Vault. We’ve seen a lot of...

The 3-2-1-1 air gap rule

The importance of Air Gap Backups in a Disaster Recovery Solution It’s not a matter of IF your business will succumb to hackers, a natural disaster, employee theft or other mismanagement of data. It’s a matter of WHEN. Naturally, it’s become common practice to keep...