PCI DSS v3.2 - What You Need to Know to Stay PCI Compliant
To accept credit cards in Canada, businesses need to be PCI compliant. Becoming PCI compliant...
1 min read
David Gamey
:
Oct 7, 2021 10:07:00 PM
PCI DSS can be hard and not preparing for it just makes things harder. Following this advice is guaranteed to make it both more exciting and painful.
Seriously, if you want your assessment to be smooth and boring you may find these articles useful.
Original Publication: 2021-10-07
Updated PCI FAQ & Learn More links: 2023-06-16
Compliance can seem as dry as toast. Normally, it only gets exciting when things go wrong like when you find problems during an annual assessment, facing a looming deadline, with senior management breathing down your neck expecting a pass. Last minute discovery of problems gets extremely stressful. Failure becomes an option. Remediation is not guaranteed and can often be risky, sub-optimal, and expensive.
PCI DSS has 12 high-level requirements and over 250 sub-requirements each of which is an opportunity for failure. The kinds of challenges we describe are often avoidable and manageable. After all, PCI is an open book exam and there should be no excuse for not being prepared. If you are struggling with business-as-usual compliance, or have challenges, we can help.
To accept credit cards in Canada, businesses need to be PCI compliant. Becoming PCI compliant...
David Gamey :
Aug 26, 2016 12:00:00 AM
Recently, Control Gap posted an article performing a detailed analysis of the recent changes in...
David Gamey :
Oct 31, 2019 12:00:00 AM
If you're subject to PCI DSS you need to understand "The ENTITY". We aren't talking about a...