Payment Card Industry (PCI) Security Compliance Program

Merchants that accept credit and debit cards are required to adhere to certain rules and standards designed to protect cardholder account data. The various rules and standards are issued individually by the card associations and collectively by the PCI Security Standards Council. State entities accepting credit cards are required to adhere to these rules and standards. Information contained herein is intended to provide guidance regarding compliance.

• Understanding PCI Data Security
  • PCI Security Standards Overview
  • Understanding PCI Data Security Presentation
  • Applicability of PCI Data Security Standard (PCI DSS) to Card Capture Methods
  • Policy for Security Incident Plan
  • PCI Related Memorandums
  • Common Payment Services - Report of Compliance
• PCI Data Security Resources
  • State eCommerce Program
  • PCI Security Standards Council, LLC
  • PCI Data Security Standard
  • PCI Self-Assessment Questionnaire
  • PCI Penetration Testing Requirement 11.3
  • VISA's Cardholder Information Security Program (CISP)
  • MasterCard's Site Data Protection Program (SDP)
  • Glossary of Terms
  • List of Compliant Service Providers
  • Payment Application Data Security Standard
  • PIN Transaction Security Standard
  • Visa's List of Validated Payment Applications
  • PCI Council's List of Validated Payment Applications
  • Sample Addendum for Requirement 12.8
  • TrustWave
• TrustKeeper Validation Service
  • Compliance with PCI Data Security Standards
  • Validation of PCI Compliance Requirements
  • Trustwave Validation Enrollment
  • Trustkeeper Portal Login
  • Responding to Notice of Non-Compliance
  • PCI Validation for Service Providers
  • SOW for Supplemental Remediation Services