PCI DSS FAQ - Payment Card Industry (PCI) Data Security Standard Discussion Forum  

Go Back   PCI DSS FAQ - Payment Card Industry (PCI) Data Security Standard Discussion Forum > Payment Card Industry Data Security Standard Frequently Asked Questions (PCI DSS FAQ) > Maintain an Information Security Policy > [PCI-DSS] Requirement 12: Maintain a policy that addresses information security
Reload this Page 12.8.2 Agreement that includes an acknowledgement that the service provider is responsible for the security of cardholder data the provider possesses
Register FAQ Calendar Search Today's Posts Mark Forums Read

[PCI-DSS] Requirement 12: Maintain a policy that addresses information security A strong security policy sets the security tone for the whole company and informs employees what is expected of them. All employees should be aware of the sensitivity of data and their responsibilities for protecting it.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 03-18-2007, 03:45 AM
admin's Avatar
admin admin is offline
Administrator
  
Join Date: Jul 2002
Posts: 229
Default 12.8.2 Agreement that includes an acknowledgement that the service provider is responsible for the security of cardholder data the provider possesses
12.8.2 Verify that the contract contains provisions for acknowledgement by the third party of their responsibility for securing cardholder data
Reply With Quote
  #2  
Old 03-30-2010, 03:34 AM
albertwigs albertwigs is offline
Junior Member
  
Join Date: Mar 2010
Posts: 1
Default
Vsa aims to secure Visa cardholder data wherever it resides, requiring that members, merchants, and service providers maintain the highest information security standards.I like the post very much as it contain information regarding Data security.
__________________
compromise agreement
Reply With Quote
Reply

Bookmarks
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
[PCI-DSS] 4.1 Use strong cryptography and security protocols such as SSL/TLS or IPSEC to safeguard sensitive cardholder data during transmission over open, public networks. admin [PCI-DSS] Requirement 4: Encrypt transmission of cardholder data across open, public networks 3 05-03-2010 08:38 AM
A.1.4 Enable processes to provide for timely forensic investigation in the event of a compromise to any hosted merchant or service provider. admin Requirement A.1: Hosting providers protect cardholder data environment 0 03-18-2007 03:51 AM
A.1 Protect each entity's (that is merchant, service provider, or other entity) hosted environment and data, as in A.1.1 through A.1.4: A hosting provider must fulfill these requirements as well as all other relevant sections of the PCI DSS. Note: Even though a hosting provider may meet these requirements, the compliance of the entity that uses the hosting provider is not guaranteed. Each entity must comply with the PCI DSS and validate compliance as applicable. admin Requirement A.1: Hosting providers protect cardholder data environment 0 03-18-2007 03:49 AM
12.6 Implement a formal security awareness program to make all employees aware of the importance of cardholder data security: admin [PCI-DSS] Requirement 12: Maintain a policy that addresses information security 0 03-18-2007 03:43 AM
8.5.16 Authenticate all access to any database containing cardholder data. This includes access by applications, administrators, and all other users admin [PCI-DSS] Requirement 8: Assign a unique ID to each person with computer access 0 03-18-2007 03:17 AM


All times are GMT -4. The time now is 07:00 PM.

Contact Us - PCI DSS FAQ - Payment Card Industry (PCI) Data Security Standard Discussion Forum - Archive - Top

All logos and trademarks in this site are property of their respective owner.
The comments are property of their posters, all the rest ©1997 - 2010 by PCIDSSFAQ.ORG, except where noted otherwise.
Powered by vBulletin, Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.
PCI-DSS Forum  |  PA-DSS Forum