PCI Compliance

Debbie Harland (Past Member) $organization over 12 years ago

Hello lovely Tessiturians,

We are going through our PCI compliance dance at the moment and I wondered if any other RAMP clients had any hints or tips they could share.

I was convinced that we would only need to fill in the SAQ A form because everything is off site. I'm now reliably informed that we need SAQ D, which is much more intense, but a lot of it is not applicable.

Any comments would be welcome.

Thanks

Debbie

Parents

Alan Levine $organization over 12 years ago

Debbie,

the PCI Council issued a document of guidelines last year that clarify how an organization should handle their compliance when they are partnering with a Service Provider. It has a lot of useful guidance regarding who is responsible for what and what you have to do on your end as well as with the service provider. It is too large to post here, but if you send your email address to me at aclevine@kennedy-center.org, I'd be happy to forward you a copy of hte document.

Alan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Cancel

Reply

Alan Levine $organization over 12 years ago

Debbie,

the PCI Council issued a document of guidelines last year that clarify how an organization should handle their compliance when they are partnering with a Service Provider. It has a lot of useful guidance regarding who is responsible for what and what you have to do on your end as well as with the service provider. It is too large to post here, but if you send your email address to me at aclevine@kennedy-center.org, I'd be happy to forward you a copy of hte document.

Alan
Cancel
Vote Up 0 Vote Down

Sign in to reply

Cancel

Children

No Data