Secure Payments, PCI DSS, Regulatory Compliance Blog

Archive for the ‘Banking’ Category

Society going global

Friday, December 26th, 2008 Posted in Banking, Conferences, Merchant, SPSP, Service Provider, Society of Payment Security Professionals | 1 Comment »

Even though we have already trained thousands of merchants, acquiring banks, and service providers in many countries around the world, we have not yet trained these groups in Africa - until now. The Society of Payment Security Professionals (SPSP) is both ...

PCI Adoption in Europe and Asia Pacific

Monday, June 30th, 2008 Posted in Asia-Pacific, Banking, Europe, Merchant, PCI DSS, PCI PIN | 6 Comments »

Rob Newby blogs about the statistics and studies on the adoption of PCI compliance in Europe, based on the data points from a Register article with the same focus.  The article states: European merchants are behind their US counterparts in getting ...

Aegenis eLearning for Merchants

Friday, March 28th, 2008 Posted in Banking, Compliance, Merchant | 2 Comments »

As you may know, my company, The Aegenis Group specializes in education services for PCI DSS and other regulatory compliance areas.  I'm happy to announce to announce we have taken it to the next level. The Aegenis Group recently introduced ...

Stagpliance? Yes, we do need PCI Education

Monday, March 3rd, 2008 Posted in Banking, Card Brands, Compliance, Merchant, PCI DSS | 15 Comments »

One of the terms economists have been throwing around is that of 'stagflation'.  This term describes an uncommon situation where both inflation is high and there is a stagnation in terms of production and employment.  You see, inflation typically implies ...

Trust but Verify your POS system

Thursday, February 28th, 2008 Posted in Banking, Card Brands, Merchant, Payment Applications, pa-dss | 3 Comments »

Jay from the USA asks: If our acquirer provided POS systems, do we need to make sure that the acquirer’s equipment and websites are PCI DSS compliant? I've always said that you should "Trust but Verify"!  It is very common for a ...

TJX and Issuer Banks settlement

Monday, December 3rd, 2007 Posted in Banking, Card Brands, Credit Card Fraud, Merchant | 2 Comments »

Many of you have already heard about the TJX settlement with the Issuing Banks (not-Visa).  Although the case may involve Visa, it is only as an intermediary.  It is the Issuing banks that had to cover fraudulent charges that are ...

Issuer PCI requirements

Friday, August 31st, 2007 Posted in Banking, Card Brands, Compliance | 1 Comment »

It is important to remember that everyone has to be PCI compliant, but validation requirements may differ.  Issuers must be PCI compliant but they do not need to validate compliance (unless they are a VisaNet processor.) What if they are both ...

MasterCard Merchant Levels updated

Tuesday, August 21st, 2007 Posted in Banking, Card Brands, Merchant, PCI DSS | No Comments »

I never mentioned this, but it has been in place for a while now.  MasterCard has updated their merchant levels to match those of Visa USA.  Since MasterCard is a global company (no managed in regions like Visa) these levels ...

Bloggers not for easing PCI DSS

Friday, May 11th, 2007 Posted in Banking, PCI DSS | 8 Comments »

...thought this was interesting: -----[snip]----- It was hard to brush aside comments made by First Data CISO Phil Mellinger, who suggested at a recent forum that the Payment Card Industry's Data Security Standard (PCI DSS) should be overhauled to eliminate subjectivity, ease ...

Can PCI Compliance Be Obtained?

Sunday, April 1st, 2007 Posted in Banking, Compliance, Merchant, PCI DSS | 3 Comments »

Digital Transaction News (www.digitaltransactions.net) ran an article on March 29 entitled ‘Scope of TJX Breach Has Some Questioning Attainability of PCI’. Inside the article is a quote from Mr. Gwenn Bézard, research director at Aite Group LLC who said, ...
« Previous Entries