PCI DSS and HIPAA: The Security Standards Share Common Ground

Overview

One of the greatest challenges that the electronic transactions industry faces today is the issue of security requirements under various rules and regulations. For most people in the industry, the issue is focused on the specifics of the Payment Card Industry Data Security Standard (PCI DSS), but the issue may be much broader than that. Many other security sets are currently operative and they interface with the merchant population that the industry serves. Federal legislation with security requirements include HIPAA (the Hospital Insurance Portability and Accountability Act) of 1996 Title II, the Graham-Leach-Bliley Act of 1999, ground in the merchant services field.