What does PCI DSS mean?
PCI DSS stands for the Payment Card Industry Data Security Standard, version, which is a payment security standard set by the PCI Security Standards Council. PCI DSS governs what security safeguards merchants and service providers must use to collect and store customers’ credit and debit card information when processing transactions.
How is PCI DSS compliance determined?
To ensure compliance, merchants and service providers must show that they use encryption when transmitting cardholder data across public networks, use firewalls, use and update antivirus programs, implement advanced password protections for protecting sensitive cardholder data and more. Violations could cost merchants anywhere from $5,000 to $50,000 monthly for noncompliance, and anywhere from $50-$90 per customer account breached in the event of a data breach. You can view a summary of PCI DSS v3 requirements here.
How does PCI DSS data center and cloud hosting work?
Cloud-hosted accounts are similar to encrypted, virtual computers that you can use to run programs and store data in an encrypted environment. Our accounts are hosted on our international network of SSL-A data centers, ensuring guaranteed 99.999% uptime. Two-factor authentication and multi-layer safeguards help ensure your consumers’ data is protected from cybercriminals.
How can I audit and maintain compliance with PCI DSS?
Our PCI DSS hosting support team audits all of our Private Cloud accounts using industry-standard NIST and SSAE auditing procedures. All of our accounts undergo quarterly vulnerability and penetration testing through Trustwave.
What other compliance standards are similar to PCI DSS?
While PCI DSS is unique in that it specifically addresses security requirements for credit card payment purchases, compliance will likely entail receiving high SSL Report grades. It’s also similar to other common standards such as HIPAA, PIPEDA and GDPR in the sense they require organizations to have executable plans in place to protect client data.
Are there Abacus clients that are PCI DSS compliant today?
All of our cloud hosting accounts come PCI DSS-compliant out of the box. Contact us today to learn how Abacus Private Cloud can help ensure your organization meets important PCI DSS compliance requirements.