Inside the Firewall » Blog Archive » Small companies and PCI compliance

Small companies and PCI compliance

Here is an interesting article on one possible way in which companies can be PCI compliant; just don’t ever store, process, or transmit cardholder data - let someone else do it for you. This is because PCI only applies to you if you store, process, or transmit cardholder data.

This entry was posted on Friday, December 5th, 2008 at 5:08 am and is filed under Security Blog Beat. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

One Response to “Small companies and PCI compliance”

Mike Says:
December 7th, 2008 at 5:50 pm
Beware, if someone else (your third-party vendor) is using your Merchant ID then you may hold responsibility for the transactions and their loss. If this is the case, you may also have a PCI obligation. Check out the Self-Assessment Questionnaire A if you outsource e-commerce transactions, just to be safe.

Copyright © 2006-2009 Athena Security, Inc. All Rights Reserved. AthenaVerify^TM and Athena FirePAC^TM are trademarks of Athena Security, Inc. Privacy Statement
Inside the Firewall is proudly powered by WordPress Entries (RSS) and Comments (RSS).

Small companies and PCI compliance

One Response to “Small companies and PCI compliance”

Leave a Reply