Secure Payments, PCI DSS, Regulatory Compliance Blog

Archive for the ‘Merchant’ Category

PCI Adoption in Europe and Asia Pacific

Monday, June 30th, 2008 Posted in Asia-Pacific, Banking, Europe, Merchant, PCI DSS, PCI PIN | 6 Comments »

Rob Newby blogs about the statistics and studies on the adoption of PCI compliance in Europe, based on the data points from a Register article with the same focus.  The article states: European merchants are behind their US counterparts in getting ...

Definaitions, Roles and Responsibilities of PCI

Sunday, June 29th, 2008 Posted in Approved Scanning Vendor, Card Brands, Merchant, PCI DSS, PCI PIN, PCI SSC, QSA, pa-dss | 1 Comment »

In the payments industry there exists the PCI guidelines.  When we refer to PCI we are usually talking about the PCI DSS, although as anyone will tell you there is also the PCI PED, PCI PA-DSS, and others you should ...

PCI DSS Requirement 6.6

Sunday, June 15th, 2008 Posted in Merchant, PCI DSS, PCI SSC, Service Provider, Web Applications | 9 Comments »

Many people know by now that PCI DSS Requirement 6.6 is going into effect (meaning you must be compliant) on June 30, 2008.  What these same people are asking is, how does this apply to me and my business?  And ...

Verify that Compensating Controls work

Tuesday, June 10th, 2008 Posted in Compensating Controls, Merchant, QSA, Service Provider | 1 Comment »

If you build a new deck in your backyard, would you test it out before inviting your friends and family over for a bar-b-que?  Well it turns out that many merchants are documenting compensating controls but not actually testing them ...

Cost of PCI compliance?

Monday, May 19th, 2008 Posted in Compliance, Merchant | 9 Comments »

Walt reminded me today of a conversation being had about the cost of PCI compliance.  Him and Scott have been calculating the cost of compliance within the USA.  They say it's about $2 billion or more, give or take.  I ...

Aegenis PCI Podcast

Thursday, April 3rd, 2008 Posted in Merchant, Podcast | 6 Comments »

Yes, you knew it would happen eventually.  We are launching the Aegenis PCI Podcast via iTunes and plan to distribute such content continually.  Our goal has always been to increase the level of knowledge within the industry and help merchants ...

Aegenis eLearning for Merchants

Friday, March 28th, 2008 Posted in Banking, Compliance, Merchant | 2 Comments »

As you may know, my company, The Aegenis Group specializes in education services for PCI DSS and other regulatory compliance areas.  I'm happy to announce to announce we have taken it to the next level. The Aegenis Group recently introduced ...

To CVV2 or not to CVV2?

Saturday, March 15th, 2008 Posted in Merchant, PCI DSS | 2 Comments »

Should I accept CVV2/CVC2 or not?  That is the question.  Long time readers may notice I link to Walt's content, but he offers up some great information, especially to Higher Education. Checking the security code does not affect the interchange fee ...

Stagpliance? Yes, we do need PCI Education

Monday, March 3rd, 2008 Posted in Banking, Card Brands, Compliance, Merchant, PCI DSS | 15 Comments »

One of the terms economists have been throwing around is that of 'stagflation'.  This term describes an uncommon situation where both inflation is high and there is a stagnation in terms of production and employment.  You see, inflation typically implies ...

Trust but Verify your POS system

Thursday, February 28th, 2008 Posted in Banking, Card Brands, Merchant, Payment Applications, pa-dss | 3 Comments »

Jay from the USA asks: If our acquirer provided POS systems, do we need to make sure that the acquirer’s equipment and websites are PCI DSS compliant? I've always said that you should "Trust but Verify"!  It is very common for a ...
« Previous Entries
Next Entries »