PCI Standards Are Designed to Protect Your Business

PCI compliance is not just a matter of avoiding fines, it’s about good business: reducing risk, enabling delivery of services, and preserving the trust of customers.

Sterling and PCI Compliance

Install and maintain a firewall configuration to protect cardholder data.
Avoid vendor-supplied defaults for passwords and other security parameters.
Protect stored cardholder data.
Encrypt transmission of cardholder data across open, public networks.
Use and regularly update antivirus software.
Develop and maintain secure systems and applications.
Restrict access to cardholder data by business need-to-know.
Assign a unique ID to each person with computer access.
Restrict physical access to cardholder data.
Track and monitor all access to network resources and cardholder data.
Regularly test security systems and processes.
Maintain a policy that addresses information security.

Sterling and PCI Compliance

Each year, Sterling goes through an extensive review of its own systems to ensure that the highest security standards are in place for the handling, processing, transmission and storage of merchant card data. Sterling has designed a program for merchants that will detect if they are PCI compliant. The process identifies vulnerabilities in a merchant’s card processing system, including POS systems, personal computers or servers, Internet applications, shopping carts, paper-based storage systems, and unsecured transmission of cardholder data to service providers.

Sterling’s Commitment to Data Protection Education

In Sterling’s Security Center, you will find documents, videos, presentations, games and web links to educational materials.