What are the key requirements of PCI DSS for Email Marketers?
Email marketers need to focus on several key areas to comply with PCI DSS:
Build and Maintain a Secure Network: Use firewalls and other security measures to protect cardholder data. Protect Cardholder Data: Encrypt transmission of cardholder data across open, public networks. Maintain a Vulnerability Management Program: Use and regularly update anti-virus software and develop secure systems and applications. Implement Strong Access Control Measures: Restrict access to cardholder data by business need to know, assign a unique ID to each person with computer access, and restrict physical access to cardholder data. Regularly Monitor and Test Networks: Track and monitor all access to network resources and cardholder data, and regularly test security systems and processes. Maintain an Information Security Policy: Develop and maintain a policy that addresses information security for all personnel.