FTC Investigating Credit Card Data Security

March 8, 2016, Written By Natalie Rutledge
Credit Card Security

The Federal Trade Commission (FTC) has ordered nine companies to provide information on how they measure compliance with the Payment Card Industry Data Security Standards (PCI DSS).

In its press release, the FTC said it has requested information from Foresite MSP, LLC; Freed Maxick CPAs, P.C.; GuidePoint Security, LLC; Mandiant; NDB LLP; PricewaterhouseCoopers LLP; SecurityMetrics; Sword and Shield Enterprise Security, Inc.; and Verizon Enterprise Solutions (also known as CyberTrust).

These audits are required by payment card companies that process more than one million transactions a year on debit and credit cards, and are conducted to ensure that companies are doing enough to protect consumer personal information.

The FTC specifically requested details about the companies’ assessment processes, including examples of previous PCI DSS assessments, and information on additional services provided by the companies, including forensic audits.

Under Section 6(b) of the FTC Act, the agency can request these reports at any time. Members of the agency voted 4-0 to conduct this investigation.



The information contained within this article was accurate as of March 8, 2016. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


About Natalie Rutledge

Natalie Rutledge majored in Communications at Mississippi State University. She was in sales for a number of businesses and spent nine years working as a communications advisor to various entities. Natalie can be contacted directly at [email protected]
View all posts by Natalie Rutledge