PCI DSS Requirements Sample Clauses
The PCI-DSS Requirements clause mandates that parties handling payment card data must comply with the Payment Card Industry Data Security Standard (PCI-DSS). This typically involves implementing specific security measures such as encrypting cardholder data, maintaining secure networks, and undergoing regular compliance assessments. By requiring adherence to these standards, the clause helps protect sensitive payment information and reduces the risk of data breaches or fraud.
POPULAR SAMPLE Copied 2 times
PCI DSS Requirements. 7.11.1 Any contractor who provides or has access to software, systems, hardware, or devices which process and/or interact with payment card information or payment card holder data must be compliant with the current version of the Payment Card Industry - Data Security Standard (PCI DSS). The most current standards are maintained at: ▇▇▇▇▇://▇▇▇.▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/security_standards/index.php.
PCI DSS Requirements. Contractor represents and warrants that it shall implement and maintain certification of Payment Card Industry (“PCI”) compliance standards regarding data security and that it shall undergo independent third-party quarterly system scans that audit for all known methods hackers use to access private information, in addition to vulnerabilities that would allow malicious software (i.e., viruses and worms) to gain access to or disrupt the network devices. If during the term of the Agreement, Contractor undergoes, or has reason to believe that it will undergo, an adverse change in its certification or compliance status with the PCI DSS standards and/or other material payment card industry standards, it will promptly notify the CSU of such circumstances. Contractor agrees to promptly provide current evidence of PCI-DSS standards at the CSU request. The form and substance of such evidence must be reasonably satisfactory to and must be certified by an authority recognized by the payment card industry for that purpose. Contractor shall maintain and protect in accordance with all applicable laws and PCI regulations the security of all cardholder data when performing the contracted Services on behalf of the CSU. Contractor will provide reasonable care and efforts to detect fraudulent credit card activity in connection with credit card transactions processed for the CSU. Contractor shall indemnify and hold CSU harmless from loss or damages resulting from Contractor’s failure to maintain PCI compliance standard in accordance with this section. Contractor shall not be held responsible for any such loss of data if it is shown that the loss occurred as a result of the sole negligence of the CSU.
PCI DSS Requirements. In accordance with best practice as described in the Payment Card Industry Data Security Standard (PCI DSS) scheme to safeguard sensitive credit and/or debit card data, should you use the Services to store, process or transmit credit or debit card information you will:
13.11.1. inform us in writing as soon as practicable and, in any event, before you do so;
13.11.2. comply with the PCI DSS requirements; and
13.11.3. you will take all necessary steps to ensure you are properly advised by your card acquirer or a PCI DSS Qualified Security Assessor (QSA) with regards to your obligations and appropriateness of your Service.
PCI DSS Requirements. If, in the course of its engagement by Amazon, Manufacturer has access to or will Process credit, debit, or other payment cardholder information, Manufacturer shall at all times remain in compliance with the Payment Card Industry Data Security Standard (“PCI DSS”) requirements (in addition to the minimum requirements in Section 4.2), and shall remain aware at all times of changes to the PCI DSS and promptly implement all procedures and practices necessary to remain in compliance with the PCI DSS.