What is Payment Card Industry Standard?

Posted on Centerlines Blog on Oct. 15 by Aneil Patel

Does Payment Card Industry apply to your airport? Is your airport PCI compliant?

Payment Card Industry Data Security Standard is a set of requirements for ensuring protection and security of credit cardholder data. The standard was developed by Visa International, American Express, Discover Financial Services, JCB International, and MasterCard Worldwide to facilitate the adoption of a consistent data security program on a global basis.

You might be a service provider. Do you provide a common use kiosk? Do you manage payments for any parking facilities? Do you provide systems to the airlines/merchants for their own use?

At Business Information Technology Pre-Conference Seminar the panel explored these standards and the impacts that an airport needs to consider when reviewing its credit data, retention polices and system that process credit card payment transitions.

San Jose International Airport obtained payment card compliance over a year ago, and briefed the committee on lessons learned. San Jose and Orlando echoed that compliance is not only an IT project; it must involve the executive management and various departments. It is a continuous process of monitoring, assessments, quarterly scans and spot audits during the year.

Peter Maeder from IATA stressed the challenges airlines face with payment card standards. Airlines have their own sales channels, with airlines using outsourced websites and with the increase in ancillary services offered, payment card standards has become extremely difficult to manage data.

David Jividen with Barich concluded the session with reference to the rock band “Journey”. PCI compliance should be accepted with “Open Arms”, with a positive attitude that you “Don’t Stop Believin’ ” that you will achieve success. “Be Good to Yourself” and begin “Just the Same Way” you would with any major project. Assess the need, sell the cause, set the urgency, and build a plan to succeed. Otherwise, if you ignore compliance thinking “I’ll Be Alright Without You”, you may find that “After the Fall” you must answer the question “Who’s Cryin’ Now?”

The BIT pre-conference continues tomorrow morning with sessions on Key to Successful Enterprise Asset Management and Airport Cyber Security.