Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » PCI DSS Rules

PCI DSS Rules

PCI DSS rules are global security standards for any organization dealing with cardholder data to reduce security incidents, information theft, and data breaches in the payment industry. 

Here are the 12 PCI compliance requirements or rules you need to know:

  • Install and maintain a firewall to secure network connections
  • Change default passwords and security settings provided by vendors
  • Protect stored cardholder data with policies for data disposal
  • Encrypt cardholder data when transmitting it over public networks
  • Use and keep antivirus software updated
  • Develop security systems and processes to address vulnerabilities
  • Restrict access to cardholder data based on roles and privileges
  • Assign user IDs for computer access and implement authentication measures
  • Restrict physical access to cardholder data with monitoring tools
  • Track and monitor network and data access, maintaining audit trails
  • Regularly test systems and processes, including wireless access points
  • Have an information security policy outlining technology usage rules and responsibilities

Additional reading

Sprinto Named Cloud Compliance Leader in G2

For the fourth consecutive quarter, Sprinto has been named as Leader of Security Compliance by G2, the world’s leading business software review platform. This is a huge deal for us, and we couldn’t have done it without our amazing customers’ continued support and loyalty. But wait, there’s more! Sprinto has also earned recognition as a…
Compliance as a Service

Compliance as a Service: How to Implement it

There was a time when organizations rarely considered compliance as a function that required outsourcing. However, when compliance began to emerge as a more prominent component in business negotiations and contracts, not being compliant became a business impediment. As a result compliance garnered more attention and became an essential part of growth.  Fast forward to…
ISO 27001 Requirements

ISO 27001 Requirements – A Comprehensive List

Compliance with ISO 27001 requires familiarity with the standard, diligent planning, and committed implementation. To facilitate the process, you need to fulfill the necessary ISO 27001 certification requirements. The ISO 27001 requirements guide discusses the ISMS policies and procedures you must implement to demonstrate compliance with the clauses (4-10) listed in the ISO 27001 compliance…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.