What Is Cardholder Data In PCI Compliance?

Picture of David Gamey David Gamey : Jan 16, 2017 10:07:00 PM

pci

What Is Cardholder Data In PCI Compliance?

Cardholder data, aka CHD, comes from credit, debit, and prepaid cards bearing the logo of one of the PCI founding card brands. CHD includes the primary account number (PAN) alone or in combination with any of name, expiry date, and a piece of hidden data called a service code. CHD can be in any media format including text or binary data in files and databases, images, and audio. All of these formats need to be protected under PCI.

For clarity, sensitive authentication data has additional restrictions. Truncated cardholder data is not considered cardholder data.

For more see the official PCI Compliance glossary.

How a $1200 Graphics Card Threatens Your PCI DSS Compliance and Security

How a $1200 Graphics Card Threatens Your PCI DSS Compliance and Security

Picture of David Gamey

David Gamey : May 20, 2021 10:07:00 PM

Organizations subject to PCI DSS compliance validation spend significant amounts of time, effort, and money to maintain and validate their...

Blog pci cryptography

Read More

PCI Under The Microscope

PCI Under The Microscope

Picture of David Gamey

David Gamey : Jun 28, 2016 10:07:00 PM

The PCI Council has testified before Congress about standards and breaches in both 2014 and 2009 (links are to Google Searches). This year PCI is...

pci

Read More

PCI Compliance Footprints: 7 Ways To Simplify Compliance, Reduce Risk And Save Money

PCI Compliance Footprints: 7 Ways To Simplify Compliance, Reduce Risk And Save Money

Picture of David Gamey

David Gamey : Nov 26, 2016 10:07:00 PM

While you may have heard of carbon footprints and ecological footprints, you might not be aware that there is such thing as a PCI Compliance...

Blog pci Risk

Read More