Any retailers still unsure whether their data security standards can pass muster now have a new way to see how safe (or not) customer data really is.
The Payment Card Industry Council has published a detailed set of “self-assessment questionnaires” for small and medium-sized retailers, who typically aren’t required to have their data security reviewed by outside auditors. The guidance addresses hundreds of scenarios; according to the PCI Council, it will go a long way to simplifying the self-assessment process for merchants and security consultants worried about PCI compliance.
The self-assessment questionnaires (known as SAQs) first divide merchants into broad categories. SAQ A, for example, is for retailers that keep payment data off-site; SAQ B is for those that use dial-up terminals to a computer network, and SAQ C applies to those who operate Web-based sales systems. As a merchant selects his or her answers, new... To get the full story, subscribe now.
Join the Community
Full, instant access
Single-user subscription, one year | $1,199.00
For multi-user subscriptions, call (888) 519-9200