Information Security: Implementing PCI Standards and Complying With Security Breach Notification Laws
We are pleased to invite you to a Foley Executive Briefing Series seminar addressing information security, including the necessary steps to becoming compliant with Payment Card Industry (PCI) data security rules and the various state security breach notification laws.
The Payment Card Industry Data Security Standard (PCI DSS) applies to every organization that processes credit cards — and compliance is required. Credit card companies and banks apply significant fines for noncompliance and may revoke a company’s ability to process credit card transactions until it complies with the PCI DSS.
Failure to comply with the PCI DSS may increase a company’s risk of experiencing an information security breach, the effects of which can be devastating. The Privacy Rights Clearinghouse reports that since 2005, approximately 223 million personal information records have been compromised. Proactive PCI DSS compliance may help companies avoid information security breaches, thus preventing the need to spend extraordinary amounts of time and money to comply with the several state security breach notification laws.
Please join us as Matthew A. Karlyn, Foley Information Technology & Outsourcing Attorney, and Jeff Neville, CIO of Eastern Mountain Sports, Inc., discuss:
- Information security and PCI DSS compliance
- The degree to which companies must comply with the PCI DSS
- Effects of PCI DSS compliance
- Security breach notification laws and other legal requirements regarding personal information
- Appropriate (and inappropriate) ways to respond to security breaches
- Compliance with state security breach notification laws
For additional information, please contact Wendy Decker at [email protected] or 617.342.4000.
Information Security: Implementing PCI Standards and Complying With Security Breach Notification Laws is part of the Foley Executive Briefing Series. Learn more about upcoming programs in the series at Foley.com/FEBS.