General PCI Flashcards
1
Q
What does account data include?
A
cardholder data and/or sensitive authentication data
2
Q
Define cardholder data
A
Cardholder data includes
- primary account number (PAN)
- cardholder name
- expiration date
- service code
3
Q
Define sensitive authentication data
A
Sensitive authentication dat includes
- full track data (magnetic-stripe data or equivalent on a chip)
- card verification code
- PINs/PIN blocks
4
Q
What data cannot be stored after authorization as defined in Req 3.3.1?
A
- full track data
- card verification code
- PIN/PIN block
5
Q
Storage must be kept to a minimum for what data elements as per Req 3.2?
A
PAN, cardholder name, service code, expiration date
6
Q
A
