Are you in compliance?

Don't miss out! Sign up today for our weekly newsletters and stay abreast of important GRC-related information and news.

Get updates on Compliance Week offerings, including new features, databases, research, and other resources, along with announcements of upcoming Webcasts, conferences, seminars, CPE/CLE opportunities and more.

Published every Thursday, Compliance Week Europe offers a condensed summary of risk, audit, and compliance news either originating in Europe, or of special interest to European compliance professionals. This newsletter will follow developments by the European Commission, as well as those of national governments across the region, or any U.S.-based news that might have consequence across the Atlantic. Frequency: weekly; Thursday a.m.

A fresh edition of Compliance Week delivered via e-mail and online every Tuesday morning, relentlessly focused on the disclosure, reporting and compliance requirements of our 25,000+ paying subscribers.

Published every Friday, Compliance Weekend was launched at the behest of subscribers, and offers a quick Plain English review of the week's key developments. We hope you enjoy this supplement to Compliance Week's Tuesday edition.


Status message

Start your free, no obligation 10-day trial to continue exploring with full access.

PCI Standard Catches Lawmakers’ Eyes

Todd Neff | October 2, 2007

The credit card industry has been trying to force stronger data privacy rules onto the banking and retail sectors for more than a year. Now state legislatures are getting into the act.

A California bill forcing merchants to comply with key elements of the Payment Card Industry Data Security Standard is a governor’s signature away from becoming law. PCI standards already are the law in Minnesota, which passed the nation’s first such statute in May. And with no end in sight to headline-grabbing stories of identity theft, compliance officers can expect more states to follow suit.

Credit card companies—primarily Visa, Mastercard, and American Express—have been pressuring merchants since 2005 to adopt the PCI standard, a set of IT controls the credit card industry developed to protect consumer information. The standard went into effect Sept. 30, with the credit card companies threatening stiff fines to any merchant or bank not in... To get the full story, subscribe now.