Questions? Contact Us

 

Latest News

Featured News & Events

What Are The Benefits Of PCI Compliance?



One of the most valuable commodities in this day and age is your own personal information. The more we make purchases over the Internet or over the phone, in other words: not in person, the more important that information becomes.

However, as security breaches receive more coverage and are more well known to the public, trust in the current security measures is coming into question, and the need for stronger security and standardized tools and controls became necessary.

Enter the PCI DSS, or Payment Card Industry Data Security Standard. This was created by the five major credit card companies as a guideline to help merchants and other companies implement the necessary hardware, software, and other procedures to guard sensitive credit card and personal information.

The encouragement to achieve PCI compliance comes in a couple different forms: benefits and mandates. The mandates are the requirements of PCI compliance, and attached to them are some very strict and specific penalties. These could include fines as high as $500,000 per incident, and the loss of the ability to accept credit cards at all.

On the other hand, there are a number of PCI compliance benefits that should be as much of an incentive, if not more so, than the penalties. It merely requires a proactive understanding of the long term benefits of compliance. Some of these benefits, you will find, are somewhat more intangible than others, but that doesn't make them any less valuable.

The first and most obvious benefit of PCI compliance is a simple matter of trust. What if your company was the one that recently suffered a major security breach? What if you had to live with the stigma of "the company that lost thousands of credit card number"? Could you ever live it down? Could you survive the fallout?

A giant company may be able to weather the storm (as has been seen in some recent cases), but most companies need to focus on building lasting trust from the beginning. Being PCI compliant can help you achieve this.

More tangibly, merchants who are PCI compliant are offered protection from the fines if you should happen to be breached. If you are compliant at the time you suffer an attack, you can have a sort of safe harbor.

At the moment, these "carrots and sticks", or mandates and benefits, are assumed to be enough to encourage merchants to gain PCI compliance. But if it turns out, in fact, to not be enough, the PCI Security Standards Council will likely change the measures of encouragement. The reason for these measures is that trust is the only thing that will propel the online industry forward. If customers lose their trust in the system, they will find alternate methods to do business.

It is a difficult thing in the naturally competitive environment of online business to consider something as nebulous as "the greater good", but in a world where personal information is so valuable, creating an environment where that information is utterly secure should be a top priority.


Andy Eliason is a writer for Main10, Inc. If you'd like to learn more about PCI compliance, or how to become PCI DSS compliant, visit Braintree Payment Solutions today and find out what they have to offer.
PCI DSS Compliance
ZZ Severs now offers InterWorx-CP Servers

Related Posts

 

Tag Cloud

network World Backup Day computing in the cloud vulnerability scanning data privacy cyber monitoring cyber Domani Names trends IT services credit card Firetalk PCI compliance business community Cloud Computing VPS Servers mail server Security PCI Audit PCI Service Provider Business Solutions SSL pci complliant hosting Payment Card Industry businesses personal information recovering data Control Panel security computer networks Medical Records support logical security computer security BSides amazon ec2 Business Planning HIDS windows 7 information technology Las Vegas Alarm shared folders Credit Card Security spam apache PCI Data Security Standards PCI qsa Presentation business solitions activesync cyber liability insurance cybersecurity dss cell phone email anti virus Scalable Redundant Cloud Infrastructure Healthcare Records social engineering teensy phishing members area physical security password two factor authentication CentOs bash credit cards stolen Information Technology openssl lamp employee training caller-id PCI Solutions David Zendzian healthcare solutions Disaster Recovery Plan Hosting Xen spoofing search sender policy Compliance Windows Home Depot Breach PCI Hosting shared hosting Positive Customer Impact IT Solutions arduino vps phishing attacks change ZZ Servers business solutions Charleston Sysadmin cyber security business iphone command line exchange QSA smartphone shared server Medical Solutions permissions safe computing Credit Cards Accountability Act cyber monday HIPAA Solutions follow.The HIPAA Privacy Rule Internet infrastructure Health Care Cybersecurity IT Services INFOSEC Ubuntu protect data multi-factor authentication motivation Cybersecurity ipad cloud infrastructure Continuous Monitoring Linux Hackers shared secure hosting IT Vulnerability Health Insurance Portability HIPPA passwords IT solutions HIPAA solutions eCommerce eCommerce Solutions hosting control panel kerio data protection log files DEF CON ZZ Servers Co-Founder email accounts Zendzian DRP health care providers GDPR dsbl OSSEC blackberry InterWorx infrastructure Small Business PCI Compliance TLS Car Hacking education security circles Server Mangement embedded cyber protection data breach cloud Email physical Web Hosting Announcement Reports Assigned Names Internet backup solutions black friday spf assesment video compliant hosting Interworx-CP TiaraCon small business National Cyber Security Awareness Month PCI DSS 3.2 IT security compliance Internet Corporation credit card payment vyatta router firewall filter security PCI HIPAA HIPAA Cybersecurity Business Solutions ICANN management malicious software intrusion detection cli Shmoocon Geekend Debian Online Business