5 Responses to “Call Center FAQ Significantly Changes”


  1. 1 john
    February 6, 2010 at 11:34 PM

    I have to agree, this is getting ridiculous. My real concern is the continuous use of the FAQ on the SSC’s website to change PCI requirements. Just as recently last month they had a posting that said call centers have an exception to the storage of prohibited data if its not stored in a manner that is searchable. Not only have they taken that down, but have called out mp3s and wav files as being prohibited.

    They should wait till the new revisions of the DSS to make changes that impacting, not the FAQ.

  2. 2 scott
    January 26, 2010 at 8:31 AM

    Now this is getting ridicules, I will be impressed when the PCI SCC finally adds rules that state the storage of clear text magnetic stripe data, CVV and other sensitive cardholder information is no longer allowed to be stored on card itself, since this seems to be the source of all the problems.


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s


Announcements

FishNet Security is looking for experienced QSAs for their PCI practice. If you are an experienced QSA and are looking for a change, go to the Web site (http://www.fishnetsecurity.com/company/careers), search for 'PCI' and apply.

If you are posting a comment, be patient, as the comments will not be published until they are approved.

If your organization has a PCI opportunity, is in need of assistance with a PCI issue or if you would like the PCI Guru to speak at your meeting, you can contact the PCI Guru at pciguru AT gmail DOT com.

I do allow vendors to post potential solutions in response to issues that I bring up in posts. However, the PCI Guru does not endorse any specific products, so "Caveat Emptor" - let the buyer beware. Also, if I feel that the response to too "sales-ee", I reserve the right to edit or not even authorize the response.

Calendar

January 2010
M T W T F S S
« Dec   Feb »
 123
45678910
11121314151617
18192021222324
25262728293031

Enter your email address to subscribe to the PCI Guru blog and receive notifications of new posts by email.

Join 909 other followers


Follow

Get every new post delivered to your Inbox.

Join 909 other followers

%d bloggers like this: