In that capacity, the data center provider has specific responsibilities that must follow PCI Compliance. The PCI Security Standards Council, LLC has provided a PCI DSS New Self-Assessment Questionnaire (SAQ) Summary v1.2 to determine which self-assessment questionnaire (SAQ) is appropriate for your company.Ī data center provides facilities for companies and merchants to house servers as they conduct their business. These principles and requirements are found on the About the PCI Data Security Standard (PCI DSS) page on the PCI Security Standards Council website. PCI Compliance is an adherence of the policies and procedures that your business handles information to the PCI DSS standard.įor a company (service provider or merchant) that is hosted in a data center to be PCI Compliant, it must restrict its information handling procedures to the PCI DSS requirements, and have an attestation of that compliance. PCI DSS is an abbreviation for PCI Data Security Standard, the worldwide information security standard set by the Payment Card Industry Security Standards Council to help control and minimize points of risk to fraud or compromise of sensitive information. Data center providers normally do not have anything to do with their customer’s sensitive information handling procedures. To clarify and answer the PCI question, let’s discuss the responsibilities of the data center and the responsibilities of the merchant or service provider (data center customer). Potential data center customers often ask data center operators if they are "PCI Compliant." There has been some confusion surrounding the answer to this question.
0 kommentar(er)
