PCI-DSS and MSPs?

---

• From: "Sheldon Alman" <sheldon.alman@xxxxxxxxxxxxx>
• Date: Wed, 17 Dec 2008 13:46:17 -0500

---

Hello,

I work for a Managed Service Provider who provides service to businesses
who are required to be PCI compliant as well as businesses who are not.

It is to my understanding that as an MSP we are required to be PCI
compliant.

Does this mean that we have to follow PCI compliance
procedures/practices with both our PCI and non-PCI customers? Or do we
only have to adhere to PCI standards when dealing with those customers
who are required to be PCI compliant?

Thanks,

---

• Follow-Ups:
  • RE: PCI-DSS and MSPs?
    • From: Steve Freeman

• Prev by Date: Re: Help to Automate XSS and SQL
• Next by Date: RE: dual password for file/folder encryption
• Previous by thread: FDE
• Next by thread: RE: PCI-DSS and MSPs?
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > security-basics  > 2008-12