The Payment Card Industry Data Security Standard (PCI DSS) was created in December of 2004 by a group of major credit card companies which consist of VISA, Discover, American Express, JCB, and MasterCard. “The standard was created to increase controls around cardholder data to reduce credit card fraud.” (Shakeel, 2016). There are several important factors that make up a foundational standard when handling customer information. The PCI DSS outlines certain data that has to be protected and ensures businesses conform with it by meeting certain requirements. One of these outlines states that robust firewalls have to be implemented to secure the network that will process and handle customer transactions to ensure there isn’t inconvenience to the vender or cardholder. Another states that vendor default information is not to be used for passwords or PINs on the site where customers conduct business. Customers will be able to change their password and PINs whenever they want. Also, the systems that are used to conduct business are to be protected against hackers by installing and updating anti-malware, anti-virus, and anti-spyware software. This ensures that any vulnerabilities or bugs are detected so they can be addressed to prevent any exposure of customer data. “When you stay compliant, you are part of the solution – a united, global response to fighting payment card data compromise.” (PCI, 2019)
When customers use personal information for business transactions, there is certain type of data that must be protected. Some of this data includes: social security numbers, birth dates, phone numbers, addresses, and mother or father maiden name. This data should be encrypted to protect it against any hackers. Digital encryption is vital for all forms of digital transfers of data. Red Clay must ensure that they abide by the PCI DSS standard to properly handle and protect customer information when doing credit card transactions.
It is important to comply with the proper standards and policy guidelines that carry out business transactions world-wide. Red Clay must ensure that its information collection and business practices are according to regulations that will reinforce customer trust and credibility. “Failing to provide adequate protection against different threats also subjects you to penalties form laws protecting citizen of other countries doing business with you.” (Stringfellow, 2018).