Skip to the main content.
Contact

What Is The Difference Between Masking And Truncation In PCI Compliance?

What Is The Difference Between Masking And Truncation In PCI Compliance?

Masking and truncation of cardholder data may seem the same on the surface (eg. 423456XXXXXX7890); however, each implies different functionality.

Masking applies to displays and implies the data can be accessed behind the scenes.

Truncation applies to storage and implies the permanent and irrecoverable transformation of the original data.

For more see the official PCI Compliance glossary.

Another Way 8-Digit Bins Complicate PCI Compliance: It's Not Just Data-at-Rest

Another Way 8-Digit Bins Complicate PCI Compliance: It's Not Just Data-at-Rest

The adoption of 8-digit BINs in 2022 has already created many transitional challenges for organizations needing access to the full BIN numbers (see...

Read More
3 Ways 8-Digit BIN Ranges May Impact PCI Compliance

3 min read

3 Ways 8-Digit BIN Ranges May Impact PCI Compliance

New 8-digit Bank Identification Numbers (BIN) could complicate PCI truncation rules and create compliance headaches for those required to maintain...

Read More
8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified

2 min read

8-digit BIN Issues and Risks Remain after PCI Truncation Rules Clarified

Last month we wrote this article about issues arising from the addition of new BIN ranges and the lack of clear guidance specifically with 16-digit...

Read More