News & Analysis as of

PCI

McDermott Will & Emery

[Webinar] PCI DSS 4.0: Timelines and Initial Preparation Steps Required for Your Business - February 1st, 12:00 pm - 1:00 pm EST

McDermott Will & Emery on

Last year, the Payment Card Industry Security Standards Council released version 4.0 of its Data Security Standard (PCI DSS 4.0). The new version, which brings major changes to the payments ecosystem and compliance...more

Lowenstein Sandler LLP

States’ Safe Harbor Defense For Data Security Breaches Signals Possible Trend

Lowenstein Sandler LLP on

We are now seeing a potential trend where states are incentivizing companies through the creation of safe harbors to improve their cybersecurity posture, instead of penalizing them after a breach of personal information. Utah...more

Husch Blackwell LLP

Utah Gets A New Data Breach Defense Law

Husch Blackwell LLP on

Keypoint: New Utah law creates incentive for businesses to develop and implement a written cybersecurity program to protect themselves against data breach lawsuits. On March 11, 2021, Utah governor Spencer Cox signed the...more

Fox Rothschild LLP

Best Practices: Remote Working Cybersecurity Safeguards For The Payments Industry

Fox Rothschild LLP on

COVID-19 has caused more employees to work remotely or at home, presenting cybersecurity challenges to organizations in the payments industry. PCI Security Standards Council has issued best practices to secure and protect...more

Davis Wright Tremaine LLP

PCI DSS v. 3.2: New Requirements Coming to Protect Your Customers’ Wallets

The Payment Card Industry (PCI) Security Standards Council (PCI Council) released Version 3.2 of the PCI Data Security Standard (PCI DSS), containing several new requirements for merchants, acquirers, and other entities that...more

Locke Lord LLP

New York Insurance Legislative Update: Bills Passed to Promote E-Filings; Established Board May Affect NYDFS Prosecutory Actions

Locke Lord LLP on

The New York State Legislature’s 2016 Legislative Session on June 18, 2016 enacted new pieces of legislation affecting the New York insurance industry and also saw proposed pieces of legislation die in the process. In...more

Morris James LLP

Superior Court Dismisses Warranty Of Accuracy Claim

Morris James LLP on

This decision holds that Delaware does not recognize a claim for the implied warranty of accuracy for a report of an inspection company. Of course, that does not mean there is no breach of contract claim for inspection...more

Carlton Fields

The CFPB Takes First Enforcement Action Related to Data Security Practices

Carlton Fields on

The Consumer Financial Protection Bureau (CFPB ) has taken its first UDAAP action against a consumer financial service provider related to data security practices. Since its launch in December 2009, Dwolla, Inc. ("Dwolla"),...more

King & Spalding

Skirmishes Along The Cyber Coverage Frontier: Hotel Monteleone And Lloyd’s Of London Fight Over PCI-Related Losses After Data...

King & Spalding on

While the market for specialty cyber insurance policies has heated up considerably over the past few years, a good deal of uncertainty still affects the market as the scope of these newly-minted policy provisions remains...more

Orrick, Herrington & Sutcliffe LLP

Does the Schrems Decision Open the Door to New Cyber Insurance Exclusions?

The shockwaves continue from the October 6, 2015 ruling of the Court of Justice of the European Union (CJEU), the European Union’s highest court, invalidating the U.S.-EU “Safe Harbor” data transfer regime in a controversy...more

King & Spalding

PCI Security Standards Council Issues “How-To” Guide For Responding To A Data Breach

King & Spalding on

On September 29, 2015, the PCI Security Standards Council (“PCI SSC”) issued a press release and accompanying guidance to businesses for incident response management in the event of a data breach. PCI SSC is a global forum...more

BakerHostetler

New PCI Guidance Provides Businesses With Security Incident Response Assistance

BakerHostetler on

A security event involving payment card data, especially card present data, can be one of the most costly events a company may face. Not only did a recent study report the average total cost of a data breach as $3.8 million,...more

Alston & Bird

PCI Security Standards Council Publishes Data Breach Response Guidance

Alston & Bird on

The PCI Security Standards Council (PCI-SSC) has released new guidance on its website advising merchants how to deal with a data breach. The guidance particularly details when a PCI Forensic Investigator (PFI) will be...more

NAVEX

2015 Trends: #10 Cybersecurity: A Risk that Needs to be on Your Ethics and Compliance To-Do List

NAVEX on

The starting point for every ethics and compliance program must always be an analysis of the ethics and compliance risks faced by the organization. In that light, it’s important to listen to James Comey, Director, U.S....more

Mintz - Privacy & Cybersecurity Viewpoints

Privacy Tuesday: August 2014 #2

There is another retail data breach to talk about in this Privacy Tuesday post – privacy & security bits and bytes to start your week....more

BakerHostetler

New Guidance for Merchants on Ensuring that Service Providers Share Security Responsibility

BakerHostetler on

For merchants, long gone are the days of using a card reader with a dial-up connection to their payment processor. Today’s omni-channel retailers rely on multiple third party service providers to complete payment card...more

Proskauer - Privacy & Cybersecurity

PCI Council Issues Biz Tips to Reduce 3rd Party Security Risk

On August 7, 2014 the PCI Security Standards Council issued new guidance to supplement PCI DSS Requirement 3.0 and help organizations reduce the risks associated with entrusting third-party service providers (“TPSPs”) with...more

Davis Wright Tremaine LLP

PCI DSS 3.0: Business as Usual?

In the past, critics of the Payment Card Industry (PCI) Data Security Standard (DSS) have alleged that the DSS requirements either (1) provide little more than a minimal baseline for security with a “check-the-box” compliance...more

Davis Wright Tremaine LLP

Genesco Wins One, Loses One in Its Case Challenging PCI DSS Fines and Assessments

On November 25, 2013, Chief Judge William Haynes filed the latest order in Genesco v. Visa, Civ. No. 3:13-cv-00202 (M.D. Tenn.). In his one-line order, Judge Haynes denied Genesco’s motion for partial summary judgment...more

Davis Wright Tremaine LLP

PCI Data Security Standards Council to Release New Version of PCI DSS

In August 2013, the Payment Card Industry (PCI) Security Standards Council released Highlights of new versions of the Data Security Standard (DSS) and Payment-Application Data Security Standard (PA-DSS). The Council is...more

BakerHostetler

Visa Loses Motion to Dismiss in Genesco Case - Are the Days for PCI Assessments Numbered?

BakerHostetler on

In a highly anticipated decision, a federal court in Tennessee let stand a retailer’s claims against Visa for violation of California’s Unfair Competition Law (UCL) and for common law claims for unjust enrichment and...more

BakerHostetler

Do Merchants That Outsource Payment Processing Still Have Risk From a Breach?

BakerHostetler on

Last week a small New England bakery announced that its point-of-sale (POS) devices were infected with malware that may have put card data at risk....more

Perkins Coie

The Retail Point Of Sale Goes Mobile

Perkins Coie on

Mobile point-of-sale payment terminals have experienced explosive growth over the past year. Unlike a traditional point-of-sale terminal, a mobile terminal communicates wirelessly when processing payment cards. There are...more

23 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide