>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

DM-09Credit Card Data Restrictions

>Control Description

Organization does not store full track credit card data, credit card authentication information, credit card verification code, or credit personal identification number (PIN) which Organization processes for payment.

Theme

Technology

Type

Preventive

Policy/Standard

Data Management Policy

>Implementation Guidance

1. Ensure that a process is defined and documented for redaction of credit card data. 2. Ensure that the organization does not store full track credit card data, credit card authentication information, credit card verification code, or personal identification number (PIN).

>Testing Procedure

1. Validate that full credit card track data and sensitive authentication data is not stored in the databases of the Organization.

>Audit Artifacts

E-DM-13

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

PCI DSS
5

3.3
3.3.1
3.3.1.1
3.3.1.2
3.3.1.3

Ask AI

Configure your API key to use AI features.