-
Prepare Ye List Of PCI Grievances
Posted on September 16th, 2009 No commentsDepending on your perspective, the upcoming Community Meeting of the PCI SSC members is a “chance to provide feedback” or a place to “share ideas” regarding the standards or “Whinefest 2009.” PCI Columnist David Taylor is taking a perspective that dates back to the founding fathers and preparing a “List of Grievances.”Among the complaints: No guidance, the standards are designed for a bygone era of technology, the standards are anything but standardized, why should banks have to not comply with PCI?, compliance gamemanship and “We Don’t Need No Stinkin’ Credit Card Data.”
More here:
Prepare Ye List Of PCI Grievances -
When Hit With A Major Data Breach, Retailers Should Use The Buddy System
Posted on September 16th, 2009 No commentsThere’s a very old joke that when swimmers are about to go into shark-invested waters, they should always swim with a buddy. If a shark attacks, feed him your buddy.
Originally posted here:
When Hit With A Major Data Breach, Retailers Should Use The Buddy System -
ITRC Interactive Document Catalogue
Posted on August 18th, 2009 No commentsThis catalogue contains numerical lists of the most popular documents the ITRC has to offer, Solutions (brief articles), Fact Sheets (in depth articles), and Letter Forms (forms for victims and consumers to use).
Read more:
ITRC Interactive Document Catalogue -
Mass. Dilutes Data Security Regs To Appease Smaller Retailers
Posted on August 16th, 2009 No commentsMassachusetts has watered down its proposed retail data security regulations to make them more palatable to small businesses. Calling for a “risk-based” approach that takes into account a business’ size and the risk of identity theft posed by its operations, the revised regulations are intentionally vague instead of specific in several areas.Many of the wording changes are subtle.
Excerpt from:
Mass. Dilutes Data Security Regs To Appease Smaller Retailers
Recent Comments