BridgePay Network Solutions is dedicated to ensuring the security of data for our Partners and Merchants. In keeping with PCI DSS (Payment Card Industry Data Security Standard), BridgePay has successfully completed its audit requirements to the current PCI DSS v3.0. This set of standards was developed to encourage and enhance cardholder data security and provide a baseline of technical and operational requirements to protect cardholder data, which applies to all entities involved in payment card processing.

 

Why was this update so important or BridgePay, Merchants, and Cardholders?

 

The changes in PCI 3.0 provides for better clarification on all audit items, reducing the risk of misinterpretation which can ultimately lead to security gaps.

 

What were some of the key changes made to ensure cardholder data is secure?

• Enhanced requirement for a more comprehensive and in depth penetration testing to ensure data segmentation
• Enhanced requirement to evaluate evolving malware threats
• Enhanced requirement to include inventory of all physical and virtual hardware to prevent unauthorized physical access
• Enhanced requirement for educating staff on security processes

If you would like to review the summary of PCI DSS in full, please visit the PCI website at https://www.pcisecuritystandards.org. Click here for a quick link to the PCI DSS v3.0 Summary of Changes. 

 

Sincerely,

 

BridgePay Network Solutions