White Papers for Federal Financial Institutions Examination Council (FFIEC)

PCI Compliance Cost Analysis

SolidCore

The Payment Card Industry Data Security Standard (PCI-DSS) was created by the credit card companies and is intended to protect cardholder data wherever it resides, ensuring that merchants and service providers maintain the highest degree of information security for their customers. While the standard is meant to have a positive impact on merchants, consumers and the retail industry, many retailers are still questioning its effectiveness and necessity in light of the high-cost to comply.
A recent poll of 201 information technology (IT) and PCI compliance professionals reinforces this point. The study found that 57% of respondents either experienced a compliance control deficiency in the past year or did not know if they had a PCI compliance deficiency in the IT environment.The credit card companies divide merchants into various levels based on the number of transactions processed every year.

View the White Paper

Share or bookmarklet this web page at: