-
We recently received a letter, ostensibly from IATS, our Ticketmaster gateway processor that handles our funds received on our ecommerce site hosted by etapestry. Basically, the letter says that IATS has contracted with Security Metrics to verify its customers' PCI compliance. We will be passed a...
-
PCI-compliance is a real thing that nonprofits have to be aware of, as many others have stated. We have a couple of articles that discuss new regulatory standards that nonprofits may have to adapt to (depending upon what they do online and what sort of client data is processed) that might be helpful...
-
Well guys, the article, An Introduction to Transport Layer Security is now live. This issue has become more and more important for organizations in the past few years while trying to ensure their sites are secure as well as meeting new regulatory standards introduced by HIPAA and PCI standards of client...
-
Christian. Any company that stores credit card data would need to be PCI-compliant. Likewise, if like you say, they have a form on their site that passes along credit card data, they would need some kind of secure transmission channel (e.g., SSL), but there is a lot more to it. If you're subject...
-
I don't know much on this topic, but since you are not processing or storing the data, I don't think you need PCI-complient hosting. [quote]The Payment Card Industry Data Security Standard (PCI DSS) applies to every organization that processes credit or debit card information, including merchants...
-
I have received an email telling me that I have to have my website checked due to the new security standards that apparantly have been in place since October 2007 (I think). I have absolutely no idea what they are talking about. At the time, I was not processing credit cards via my website but am now...