Skip to main content
SpringerLink
Log in

An Evolving Regulatory Perspective

  • Chapter
  • First Online:
PCI DSS

Abstract

Much like the evolution of the motor vehicle, the digitalized business is going through its own revolution, where any increasing reliance on the technology becomes an integral part of a successful business.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    www.financederivative.com/inside-payment-card-fraud/

  2. 2.

    www.fool.com/the-ascent/research/identity-theft-credit-card-fraud-statistics/

  3. 3.

    www.statista.com/statistics/248769/age-distribution-of-worldwide-instagram-users/

  4. 4.

    www.worldometers.info/demographics/world-demographics/

  5. 5.

    www.iii.org/fact-statistic/facts-statistics-highway-safety

  6. 6.

    https://blog.motoringassist.com/history-of-automobile-safety/

  7. 7.

    https://gdpr-info.eu/art-3-gdpr/

  8. 8.

    https://gdpr.eu/

  9. 9.

    https://gdpr-info.eu/issues/fines-penalties/

  10. 10.

    www.dlapiperdataprotection.com/

  11. 11.

    https://ec.europa.eu/commission/presscorner/detail/en/MEMO_16_2422

  12. 12.

    https://ico.org.uk/for-organisations/guide-to-pecr/

  13. 13.

    www.priv.gc.ca/en/privacy-topics/privacy-laws-in-canada/the-personal-information-protection-and-electronic-documents-act-pipeda/

  14. 14.

    www.mass.gov/doc/201-cmr-17-standards-for-the-protection-of-personal-information-of-residents-of-the/download

  15. 15.

    www.ilga.gov/legislation/ilcs/ilcs3.asp?ActID=2702&ChapterID=67

  16. 16.

    www.ropesgray.com/en/newsroom/alerts/2019/08/New-York-Updates-Privacy-Laws?utm_source=Mondaq&utm_medium=syndication&utm_campaign=View-Original

  17. 17.

    https://legislation.nysenate.gov/pdf/bills/2019/S133

  18. 18.

    https://legislation.nysenate.gov/pdf/bills/2019/A2374

  19. 19.

    www.dlapiperdataprotection.com/index.html?t=law&c=BR

  20. 20.

    www.dlapiperdataprotection.com/index.html?t=law&c=IN

  21. 21.

    www.mastercard.us/content/dam/mccom/global/documents/mastercard-rules.pdf

  22. 22.

    https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/security/

  23. 23.

    www.venable.com/insights/publications/2019/02/ftc-2019-insights-and-priorities-for-the-payments

  24. 24.

    www.fca.org.uk/news/press-releases/fca-fines-tesco-bank-failures-2016-cyber-attack

  25. 25.

    https://techcrunch.com/2019/07/22/equifax-fine-ftc/

  26. 26.

    www.ctvnews.ca/business/bmo-fined-1-25m-euros-by-ireland-s-central-bank-for-breaching-licence-conditions-1.4399691

  27. 27.

    www.consumer.ftc.gov/blog/2019/07/capital-one-data-breach-time-check-your-credit-report

  28. 28.

    www.mastercard.us/en-us/merchants/safety-security/security-recommendations/merchants-need-to-know.html

  29. 29.

    Level 1 merchants that choose to conduct an annual onsite assessment using an internal auditor must ensure that primary internal auditor staff engaged in validating PCI DSS compliance attend PCI SSC ISA Training and pass the associated accreditation program annually in order to continue to use internal auditors.

  30. 30.

    www.pcisecuritystandards.org/assessors_and_solutions/approved_scanning_vendors

  31. 31.

    www.pcisecuritystandards.org/documents/SAQ-InstrGuidelines-v3_2_1.pdf?agreement=true&time=1575476486348

  32. 32.

    Level 2 merchants that choose to complete an annual self-assessment questionnaire must ensure that staff engaged in the self-assessment attend PCI SSC ISA Training and pass the associated accreditation program annually in order to continue the option of self-assessment for compliance validation. Alternatively, Level 2 merchants may, at their own discretion, complete an annual onsite assessment conducted by a PCI SSC-approved Qualified Security Assessor (QSA) rather than complete an annual self-assessment questionnaire.

  33. 33.

    Level 3 and Level 4 merchants may alternatively, at their own discretion, engage a PCI SSC-approved QSA for an onsite assessment instead of performing a self-assessment.

  34. 34.

    Level 4 merchants are required to comply with the PCI DSS. Level 4 merchants should consult their acquirer to determine if compliance validation is also required.

  35. 35.

    www.mastercard.us/en-us/merchants/safety-security/security-recommendations/service-providers-need-to-know.html

  36. 36.

    www.gov.uk/guidance/the-highway-code/introduction

  37. 37.

    https://info.knowbe4.com/one-on-one-demo-partners?partnerid=0010c000022xCHUAA2

  38. 38.

    https://howsecureismypassword.net/

Author information

Authors and Affiliations

  1. Castleford, West Yorkshire, UK

    Jim Seaman

Authors
  1. Jim Seaman
    View author publications

    You can also search for this author in PubMed Google Scholar

Rights and permissions

Reprints and permissions

Copyright information

© 2020 Jim Seaman

About this chapter

Check for updates. Verify currency and authenticity via CrossMark

Cite this chapter

Seaman, J. (2020). An Evolving Regulatory Perspective. In: PCI DSS. Apress, Berkeley, CA. https://doi.org/10.1007/978-1-4842-5808-8_1

Download citation

Publish with us

Policies and ethics

Search

Navigation