Payment Card Industry
Compliance Program
For questions or to
request a quote:
Call (651) 631-8663
Payment Card Industry Compliance Program
The Payment Card Industry (PCI) Data Security Standard exists to support secure practices in credit card processing. The objective of the PCI program is to encourage companies to maintain a high level of security to protect cardholder information regardless of where it resides. The foundation of PCI was built from Visa's Cardholder Information Security Program (CISP). The standard provides the requirements that all entities storing, processing or transmitting cardholder data must abide by.
The following are compliance requirements:
- Create and maintain a secure network
- Protect cardholder data
- Maintain a vulnerability management program
- Execute strong access control measures
- Monitor and test networks frequently
- Sustain an information security policy
It is mandatory for companies to comply and, further, to conduct business with other PCI-compliant members. Credit card companies can impose hefty fines reaching $500,000 per incident and your credit card processing services could be terminated. PCI compliance provisions should be included in third-party contacts as well.
Business Data Record Services is a Level 1 service provider.
We recently completed our annual onsite audit confirming compliance with the PCD Data Security Standard for our records management, data protection and shredding businesses.
PCI compliant service providers
The Right People... The Right Choice... The Right Solutions