If you have been wondering whether your company is required to comply with the Payment Card Industry (PCI) Data Security Standard (DSS), then it probably is. The likely answer to whether your company is regulated by the PCI DSS can be found by answering one question:
Does my company have computers that store, process, or transmit the personal account information associated with credit card purchases?
If your answer is "yes," then your company is probably required to comply with PCI regulations.
True Digital Security is an Approved Scanning Vendor (ASV), which means we are certified to help customers meet the PCI requirement for quarterly external vulnerability scanning. Depending on the number of transactions you process and credit card brands you accept, this requirement may apply to you.
Customers of True Digital Security have the peace of mind that comes from knowing we will help them achieve and maintain PCI compliance. We keep up with the ever-evolving standards and regulations so you don't have to. It's our job.
PCI Security Scanning
It is our pledge to work closely with you throughout the entire PCI Security Scanning process to make each quarterly engagement as clear and efficient as possible. We will begin by helping you identify all the hosts on your network that need to be scanned. We will then work with you to schedule and execute the scans in a process that has been certified to minimize the impact on your production environment.
We then analyze the results to identify any vulnerabilities that must be addressed to remain compliant. If there aren't any, we will issue PCI compliance reports and send you on your way with the knowledge that you are doing your part to protect your customers' information. If we identify any compliance-affecting vulnerabilities, we will provide you with a report that describes the problems and gives you the information you need to fix them.
However, our work is not finished yet. We will work with you throughout the remediation process to help you fix the problems, verify that they have been eliminated, and issue a new "clean" PCI compliance report. Our job isn't over until you are compliant.
For more information about the PCI requirements please visit www.pcisecuritystandards.org.
