Updated PCI Data Security and Payment Application Data Security Standards are Released
After two years of detailed analysis and preparation, the Payment Card Industry Security Standards Council (PCI SSC), a global forum for the development of payment card security standards, has updated its best practices for businesses to follow in protecting customers’ private and financial information from data breaches.
The updates are published in version 3.0 of the PCI Data Security Standard (PCI DSS) and the Payment Application Data Security Standard (PA DSS). Updates include:
- Specific recommendations for making the standards part of everyday business processes;
- Best practices for maintaining ongoing payment card security standards compliance;
- Additional guidance on how to utilize the standards; and
- Enhanced testing procedures to clarify the level of validation expected for each requirement.
These updated standards will go into effect January 1, 2014.
To ensure that their policies are up to date with the latest and most effective standards, hotels are well advised to use PCI training modules or other custom learning solutions to protect themselves and their guests’ private data.
The Venza Group has partnered with Arnall Golden Gregory (AGG) to create a series of interactive eLearning modules to address PCI compliance in the hotel industry. Management, employees and IT are taught about the requirements they must support as part of the Payment Card Industry Data Security Standards. The Venza Group also is partnering with AGG to create an interactive eLearning module to train hoteliers on general privacy and security awareness issues.