What is PCI Compliance?The PCI security standards are a blanket of regulations set in place to safeguard payment account data security. The council that develops and monitors these regulations are comprised of the leading providers in the payment industry: American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. International. Essentially, they define the best practices for storing, transmitting, and handling of sensitive information over the internet.
How Did Our Website Become PCI Compliant?
Our website (How-To-Plans.com) uses a shopping cart software program from a company called 3dCart. The software allows you, the consumer, to browse, add items to our shopping cart and finally checkout and pay for your items. The whole process is done over a secure and safe environment that ensures your critical personal data (such as name, address, phone number, email, credit card numbers, etc.) are safe and only used for a one time purchase on our website.
As of February 26, 2009, 3dCart and How-To-Plans have officially become PCI DDS compliant. In a growing effort to preserve the integrity of personal information, the PCI Security Standards Council has put forth a series of regulations that online businesses must follow to ensure the security of online shopping. 3dCart and How-To-Plans have met and surpassed all standards outlined by the PCI Security Standards council with flying colors. Not only did we invest in over $50,000 of state of the art network security software, but we have proven that our security management, security policies, network architecture, and software design are protected and free of any vulnerabilities. In addition, all tests were conducted by two third party companies, SecurityMetrics and Plynt, which guarantees no shortcuts were taken in proving our compliancy.
What Tests Did Our Website Go Through To Become Compliant?
To be honest, this is the boring part, but we feel that this information should be shown to our customers. Below is a list of the rigorous tests that were performed to authenticate that our company and our shopping cart software abides by all PCI data security standards: