The Technical Side of PCI DSS: “

What merchants don’t know about the technical side of protecting customer data can be costly.

The Payment Card Industry Data Security Standard (PCI DSS) describes 12 system and procedural requirements for securing customer credit card data that is transmitted, processed, or stored by an online merchant.

In order to accept credit cards as a form of online payment, merchants are expected to comply with the PCI DSS standard. In an effort to meet this requirement, online stores dutifully encrypt data transmissions with a secure socket layer (SSL) or even extended validation SSL, which is great, and implement a policy of not storing credit card data, which is also important. What is often overlooked, however, is that an online store is res…

”

(Via Practical eCommerce Articles.)