Mastercard Raises the Bar for PCI Compliance
On June 15th, Mastercard announced that Level 2 merchants, those processing between one and three million transactions annually, will now have to undergo an annual onsite assessment for PCI compliance. Previously these merchants were only required to complete the PCI DSS self-assessment questionnaire (SAQ). The onsite assessment, which must be completed by a PCI QSA (Qualified Security Assessor), will validate compliance with the twelve requirements set forth in the Payment Card Industry Data Security... (Read More)
Hearland Payment Systems Recertified for PCI Compliance
After reporting one of the largest breaches to date, Heartland Payment Systems was removed from Visa list of PCI DSS Validated Service Providers earlier this year. After being revalidated and submitting a Report on Compliance Visa reinstated Heartland as a PCI DSS compliant service provider in early May. Heartland recently announced that it expects to take a significant loss in Q3 resulting from more than $12.6 million dollars in fines from Visa and Mastercard, legal fees, and administrative costs.... (Read More)
Update to PCI Compliance Standards Published
Revisions to standard include clarifications and other subtle changes to ease implementation The PCI Security Standards Council (PCI SSC), a global, open industry standards body providing management of the Payment Card Industry Data Security Standard (PCI DSS), PIN Entry Device (PED) Security Requirements and the Payment Application Data Security Standard (PA-DSS), today announces general availability of version 1.2 of the PCI DSS. This latest version is the culmination of two years of feedback... (Read More)
