Comply with requirements by enabling configuration audit and control.
PCI establishes stringent standards on how merchants process, store or transmit cardholder data. These standards are a set of comprehensive security requirements.
Created in 2001, Visa’s Cardholder Information Security Program (CISP, also known as AIS, Account Information Security internationally) defined a standard for securing Visa cardholder data for U.S. customers, wherever data is located. More recently, Visa collaborated with American Express, Diner’s Club, Discover Card, JCB and MasterCard to create a new standard. All Merchants and Service Providers that handle, transmit, store or process information concerning these cards or related card data, were required to be compliant with PCI as of June 30, 2005, including International members.
Member financial institutions are responsible not only for their own compliance, but also compliance of their Merchants and Service Providers for all payment channels – their PCI status is affected by how well they integrate security into their own systems and business processes, as well as PCI standards implemented by their suppliers and vendors.
