FAQ

What is a PCI RoC (Report on Compliance)?

A Payment Card Industry Data Security Standard RoC (Report on Compliance) is a report prepared by either a Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) who has perfo ...
October 21, 2020
FAQ

What is a PCI Gap Assessment?

A PCI DSS gap assessment (sometimes called a PCI gap analysis) examines a company's cardholder data environment (CDE) to determine compliance with the Payment Card Industry Data Security Sta ...
October 21, 2020
FAQ

What is a PCI Network Vulnerability Scan?

A PCI network vulnerability scan is an automated, high-level test that finds and reports potential vulnerabilities in an organization's network. Regardless of size, the Payment Card Industr ...
September 28, 2020
FAQ

What is PCI PA-DSS?

The Payment Application Data Security Standard (PA-DSS) is a program designed to help companies like software vendors build secure payment applications that don't store "prohibited data," su ...
September 28, 2020
FAQ

What is PCI Compliance?

Payment card industry (PCI) compliance refers to the technical and operational standards that organizations must follow to comply with the Payment Card Industry Data Security Standard (PCI D ...
September 24, 2020
FAQ

What is a PCI DSS Risk Assessment?

A PCI DSS risk assessment is a formal process that companies use to identify threats and vulnerabilities that could have a negative effect on the security of payment card data.  According ...
August 24, 2020
FAQ

What is the PCI DSS Attestation of Compliance?

A PCI DSS (Payment Card Industry Data Security Standard) Attestation of Compliance (AoC) is a document that serves as a declaration of the merchant’s compliance status with the PCI DSS. Th ...
August 19, 2020
FAQ

How Much Does a PCI Audit Cost?

An audit to determine your organization’s compliance with the Payment Card Industry Data Security Standard (PCI DSS) can cost $15,000 to $40,000, depending on factors including business ty ...
August 5, 2020
FAQ

What is a PCI Risk Mitigation and Migration Plan?

A PCI DSS risk mitigation and migration plan is a document prepared by an organization that details its plans for migrating to a secure cryptographic protocol. It also describes the controls ...
July 28, 2020
FAQ

What is a PCI Readiness Assessment?

A Payment Card Industry Data Security Standard (PCI DSS) readiness assessment helps an organization to know whether it is ready for a full PCI DSS audit or self-assessment. A PCI DSS readin ...
June 25, 2020
FAQ

What Are the PCI Audit Log Retention Requirements?

Having an audit trail is an important part of the Payment Card Industry Data Security Standard (PCI DSS).  Audit logs, log management, log retention are all important parts of PCI DSS requ ...
April 28, 2020
1 2 3 4