PCI DSS stands for Payment Card Industry Data Security is another critical regulatory compliance standard. It was developed by the major credit card companies as a guideline to help organizations that process card payments prevent credit card fraud, hacking and various other security issues. A company processing, storing, or transmitting credit card numbers must be PCI DSS compliant or they risk losing the ability to process credit card payments. Merchants and service providers must validate compliance with an audit by a PCI DSS Qualified Security Assessor (QSA) Company

• https://www.pcisecuritystandards.org/

Secure Auditor PCI DSS Compliance Statement

http://www.secure-bytes.com/PCI_DSS_compliance_statement.pdf

PCI DSS Payment Card Guidance

Payment Card Industry (PCI) Data Security Standard, Requirements and Security Assessment Procedures Version 1.2

• https://www.pcisecuritystandards.org/security_standards/pci_dss_download_agreement.html
Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance No Electronic Storage, Processing, or Transmission of Cardholder Data Version 1.2 October 2008, v1.2
• https://www.pcisecuritystandards.org/docs/pci_saq_a.doc
US Army Regulation 380-19: Information Systems Security, February 27, 1998
• http://www.fas.org/irp/doddir/army/r380_19.pdf