WAKEFIELD, Mass. — In response to a letter from several retail trade associations suggesting changes in PCI (Payment Card Industry) data security standards, the PCI Security Standards Council here invited the trade groups to participate in the feedback process beginning on July 1 to shape the next version of the standard.
"We encourage all Participating Organization stakeholders, including the letter's authors, to actively participate in that feedback process," said Bob Russo, general manager of the PCI Security Standards Council. "We appreciate the input from these industry associations and we do encourage those that are not formal Council stakeholders to join up and become active participants, lending practical security expertise — along with their ideas — to evolve payment data security standards."
The industry groups that sent the letter include the National Retail Federation, National Restaurant Association, American Hotel and Lodging Association, National Council of Chain Restaurants, Association for Convenience & Petroleum Retailing, Merchant Advisory Group and the International Franchise Association.
Among the letter's recommendations was that the Council adopt a new standard to protect cardholder data that may include end-to-end data encryption.
The Council "anticipates a detailed analysis and position paper presented to us by the end of the summer" that will include further research into end-to-end encryption, said Russo.
Read More of Today's Headlines
