Payment Card Industry Data Security Standard (PCI DSS)
PCI DSS was developed to encourage and enhance cardholder data security and facilitate the broad adoption of consistent data security measures globally.
PCI DSS applies to all entities involved in payment card processing—including merchants, processors, acquirers, issuers, and service providers. PCI DSS provides a baseline of technical and operational requirements designed to protect account data.
SecurityFirst addresses specific PCI-DSS Requirements related to data pro- tection.
PCI-DSS Compliance and DataKeep™
Encrypts cardholder information
Manages access to cardholder information by role or process
Audits data access requests/denials for encrypted cardholder information
Manages policy and encryption keys from creation, through rotation to deletion
Keep Private Data Private
SecurityFirst software provides a broad range of features that include access management, integrated key management, sophisticated encryption and event logging to protect you from the destructive impact of a data breach.
PCI DSS consists of sections that break down into twelve distinct Requirements. There are numerous, very specific subsections under each requirement that define what must be done to protect payment card related data. SecurityFirst data-centric security solutions can help customers with those Requirements related to data protection, primarily Requirements 3, 7 and 10.
DataKeep provides a broad range of features that include data access management, integrated key management, sophisticated encryption and event logging to deliver the scalability and flexibility to help protect the most sensitive workloads and easily integrates into your current security environment.