FAIL (the browser should render some flash content, not this).

PCI Knowledgebase

 

Data Security is a hot topic in the retail industry right now, especially when it concerns credit and debit cards, and it’s a topic that is only going to become more important. With that in mind, CAP has put together the following knowledgebase of links and information to help keep retailers educated and up to date on the latest security issues and requirements. 

It is imperative that you, the retailer, understand the implications of the latest data security standards as they apply to you and your business.  CAP is dedicated to providing secure software products, but security can’t be bought.  It is a mindset, a set of practices that have to pervade your business in order to provide true security.  To that end, CAP is committed to being a part of the solution from a product and information standpoint.

Please take the time to review the links below and don’t hesitate to seek help from your reseller or any of the resources listed here.  We want you and your customers to be safe at a time when there are more security risks than ever before.  Let CAP be a part of your ongoing security practices.

The PCI security framework is governed by the PCI Security Standards Council.  Their website can be found here:
https://www.pcisecuritystandards.org/

The full PCI Data Security Standard for Retailers is what you need to understand, follow, and apply to your business to achieve compliance and security.  Download it here:
https://www.pcisecuritystandards.org/tech/download_the_pci_dss.htm

This supporting documentation will help you understand and implement the DSS:
https://www.pcisecuritystandards.org/tech/supporting_documents.htm

The Self-Assessment Questionnaire is designed to help you review your business infrastructure and practices to determine your level of PCI compliance.  SAQ for Merchants:
https://www.pcisecuritystandards.org/tech/saq.htm

The VISA Cardholder Information Security Program.  VISA has been one of the primary drivers of the push for greater cardholder protection and store security.  The CISP has led to the PCI standard and VISA continues to provide information and resources for retailers.  VISA also requires merchants to comply with these standards to avoid fines and penalties.  See the overview here:
http://usa.visa.com/merchants/risk_management/cisp.html?ep=v_sym_cisp

Please review the basics for merchants:
http://usa.visa.com/merchants/risk_management/cisp_overview.html

Also review and understand the guidelines and documents for merchants like yourself.  PCI compliance is designed to prevent cardholder data loss and theft, and VISA is prepared to react in a highly punitive manner in the event of a breach of an unsecured system.  See the requirements for merchants:
http://usa.visa.com/merchants/risk_management/cisp_merchants.html

VISA Alerts and other useful media:
http://usa.visa.com/merchants/risk_management/cisp_alerts.html

Tools and FAQ:
http://usa.visa.com/merchants/risk_management/cisp_tools_faq.html

Verifone is a payment processing solutions company that produces research and information on payment security.  It has excellent documentation and recommendations on security here:
http://www.verifone.com/industry-solutions/retail/payment-trends--security.aspx

Verifone’s Industry Security News Site, an excellent source for merchants:
http://www.secureretailpayments.com/

Consumer Protection Tips:
http://livesafely.org/identity-theft/protecting-yourself-when-paying-at-the-pump

http://livesafely.org/identity-theft/13-top-tips-to-beat-identity-theft/

 

 

 
CAP | Software © 2005