The five major credit card brands, Visa, MasterCard, American Express, Discover, and JCB, joined forces in 2004 to create the Payment Card Industry Data Security Standard (PCI). Its sole purpose is to help merchants build a security program that meets the requirements expected by the card brands.
Since then, businesses have been scrambling to make their systems PCI compliant. Many have made great strides in making credit card transactions more secure. However, five common shortcomings often throw the PCI compliance efforts of brick-and-mortar restaurants and retailers off track. This paper will discuss those deficiencies and provide some general guidance to overcome them.