PCI DSS resources for small merchants released

e-commerce-402822_1920The Payment Card Industry Security Standards Council has released a set of resources specifically to help small merchants make sense of the often complicated requirements of the PCI DSS.

In a statement, the Council explained that the PCI Payment Protection Resources for Small Merchants “provide simple guidance on why and how to keep customer payment data safe” because small businesses have been in desperate need of easily understandable payment security resources.

Guide to Safe Payments

The Guide to Safe Payments provides illustrated information on how to use strong passwords, inspecting payment terminals for signs of tampering, installing software patches, scanning for vulnerabilities, using antivirus software and where to seek help.

Relatively simple steps can make ‘the most impactful changes’

“Some of the most impactful changes a small business can make to protect themselves from a data breach are relatively simple steps, but often companies are not aware of how payment data flows from their business to their financial partners, or how they can improve the security of the cardholder data,” said PCI Security Standards Council Chief Technology Officer Troy Leach. “We specifically ask those working directly with the small business community to use these resources to educate companies on ways they can improve their security while simplifying their responsibility, so they can focus on other aspects of their business.”

Symantec reports that nearly half of all cyber attacks worldwide in 2015 were against small businesses with fewer than 250 workers.

For more information about the PCI DSS and assistance with vulnerability scans, consultancy support or PCI DSS training courses, contact IT Governance >>