Why PCI-DSS Compliance is Important to Your Club

What's more important to your business than the trust relationship you have with your members?

The financial information they have placed in your care must be secure, for their protection as well as yours. A single breach of this trust — even if no real harm was done — could irreparably damage your club's reputation.

To provide you and your members with the highest possible level of cardholder data security, Twin Oaks is fully PCI-DSS Compliant — and we are one of only a few companies in our industry to have made this commitment.

PCI-DSS (Payment Card Industry - Data Security Standard), originated in 2004 when the CISP (Cardholder Information Security Program) requirements were incorporated and updated into this new standard. PCI- DSS was developed by the PCI Security Standards Council — a consortium of major financial institutions — to enable companies of all sizes to employ consistent data security measures.

The PCI-DSS includes requirements for data security management, policies, procedures, network architecture, software design and other critical protective measures intended to help organizations protect customer account data and build a culture of security that benefits everyone.

The requirements of the PCI-DSS are built around these core principles:

> Network Security

Build and maintain a secure network including an appropriately configured firewall and strict password management.

> Data Protection

Protect stored cardholder data and encrypt all transmissions across open, public networks.

> Vulnerability Management

Maintain a vulnerability management program including the use and regular updating of anti-virus software, and the development and maintenance of secure systems and applications.

> Access Control

Implement strong access control measures. Restrict access to business need-to-know. Assign a unique ID to each person with computer access, and restrict physical access to cardholder data.

> Monitoring and Testing

Regularly monitor and test all access to network resources and cardholder data, security systems, and processes.

> Established Policy

Maintain an Information Security policy.

Don't get caught without a safety net! Protect the identities and financial information of your members, your employees, and your business. Avoid the cost, embarrassment, and the damage to your goodwill that can result from a data security breach.

Call Twin Oaks, toll-free, at 866.278.6750 for your SECURE software and billing needs.