PAYMENT CARD DATA
PCI TRAINING PROGRAM
Our PCI awareness training program, Payment Card Data – PCI, provides PCI training to all employees who handle payment card data. This course provides basic information for a lay audience.
PCI Training Requirements
The Payment Card Industry Data Security Standard (PCI-DSS), provides the rules that organizations must follow in order to protect payment card data. Several provisions of the PCI-DSS require employee PCI training about how to protect payment card data:
PCI-DSS 12.6 – Implement a formal security awareness program to make all personnel aware of the importance of cardholder data security.
PCI-DSS 12.6.1 – Educate personnel upon hire and at least annually.
PCI-DSS 12.6.1.a – Verify that the security awareness program provides multiple methods of communicating awareness and educating personnel (for example, posters, letters, memos, web based training, meetings, and promotions).
PCI-DSS 12.6.1.b – Verify that personnel attend awareness training upon hire and at least annually.
PCI-DSS 12.6.2 – Verify that the security awareness program requires personnel to acknowledge, in writing or electronically, at least annually that they have read and understand the information security policy.
Our PCI Awareness Training Course
This course is about 16 minutes long. It contains a series of 5 short video segments plus 8 interactive quiz questions. The 5 video segments discuss the special ways that payment card data must be protected under the Payment Card Industry Data Security Standard. The course covers how to identify the various types of payment card data; what data can be collected; how various types of payment data can be stored; the consequences of failing to follow the PCI standard; and various security practices that should be followed.
Click here for a printable PDF of our TeachPrivacy Payment Card Data PCI Training Program Brochure.
2. PCI OVERVIEW
• Identifying Payment Card Data
• Costs and Penalties
3. COLLECTION AND STORAGE
OF PAYMENT CARD DATA
• Minimizing Collection
• Data Storage
• Physical Security
• Data Disposal
4. PROTECTING PAYMENT CARD DATA
• Protecting the Network
• Checking for Tampering
Please Contact Us to Evaluate this Program or Others
We can provide you with a login so you can evaluate the programs.
About TeachPrivacy and Our Training Philosophy
TeachPrivacy was founded by Professor Daniel J. Solove, the leading expert on privacy and data security law. He is deeply involved in the creation of all training programs because he believes that training works best when made by subject-matter experts and by people with extensive teaching experience.
According to Professor Solove: “Great training isn’t about slickness or tricks. It is about teaching. The goal is to make people understand, care, and remember. Great training is made with genuine passion – to make people love training, it must be made with love. Excellent substance is essential. The material must be explained clearly, understandably, and concretely. The content must be short and to the point – and it must be engaging. Slickness and gimmicks can’t compensate for lackluster substance.”
TeachPrivacy provides privacy awareness training, information security awareness training, phishing training, HIPAA training, FERPA training, PCI training, as well as training on many other privacy and security topics.
Professor Solove is a law professor at George Washington University Law School. He has taught privacy law every year since 2000, has published 10 books and more than 50 articles, including the leading textbook on information privacy law and a short guidebook on the subject. His LinkedIn blog has more than 1 million followers. Click here for more information about Professor Solove.