We notice you are visiting from a U.S. Internet provider. 
29/01/2010 -
Not all payment processing security measures require expensive technology deployments - some data protection efforts are relatively simple, said business services firm Cintas. In a report published by U.S.-based National Association of Convenience Stores, Cintas said that a thorough document management program can go a long way to supporting payment processing security and compliance initiatives.
For example, businesses should limit access to sensitive information such as cardholder data to employees for which it is business critical, and they should use password protection for access to all sensitive data. Passwords should be changed on a quarterly basis, and should be composed of six to eight numbers and letters in upper and lower case, said Cintas.
Companies should also make sure to regularly shred sensitive documents - they may even want to hire a shredding service that destroys documents on a regular basis - and to install virus protection software. All antivirus programs and firewalls should be patched and updated frequently.
These simple strategies, in addition to achieving the PCI compliance benchmarks set by the PCI DSS, can help companies prevent the high expense and reputation damage caused by payment processing security breaches.
