PCI Report on Compliance - Health Works Collective

If your company collects, transmits, stores or processes credit cardholder data, you will need to create a PCI DSS Report on Compliance at least annually for on-site assessments or self-reporting questionnaires. To sustain ongoing compliance after the initial point-in-time assessment, your company needs to design and implement a set of controls specific to PCI and security.

The PCI Security Standards Council provides a template for an attestation of compliance:

Executive Summary

The PCI Security Standards Council provides a template for an attestation of compliance:

Executive Summary

Entity’s payment card business description
High level network diagram

Description of Scope of Work and Approach Taken

How the assessment was made
Environment
Network segmentation used
Details for each sample set tested
Any international entities requiring compliance with PCI DSS
Wireless networks or applications
Version of PCI DSS used to conduct assessment (2.0 is the latest)

Details About Reviewed Environment

Network diagrams
Cardholder data environment
List of hardware and software in the cardholder data environment (CDE)
Service providers
Third-party applications
Individuals interviewed
Documentation reviewed
Reviews of managed service providers

Contact Information and Reporting Date

Quarterly Scan Results

Including the four most recent ASV (approved scanning vendor) scan results

Findings and Observations

Requirements and sub-requirements
Explain N/A responses
Validation of all compensating controls

READ

4 Tips For Looking Your Best on a Tight Budget This Fall

When it comes to documenting details about your reviewed environment, any of your managed service providers/PCI hosting providers should be able to produce their own attestation of compliance report to inform your company about their controls and security. This can save you the time it takes to review and report on their compliance as it affects your company and cardholder data.

References:
PCI DSS Quick Reference Guide (Version 2.0) (PDF)

How Healthcare Professionals Can Keep on Top of Stress at Work

Just Like Any New, Burgeoning Shiny New Object, Healthcare CRM Has Its Own Challenges

How Predictive Analytics And Big Data In Healthcare Can Improve Care

A Look Into Designing The Smart Hospitals Of Tomorrow

Entrepreneurs Must Integrate Mission-Driven Strategic Investors

6 Healthcare Financial KPIs You Need for 2017

Determining the ROI on Aquatic Therapy in Your PT Practice

How to Monetize Mobile Healthcare Apps

How Healthcare Professionals Can Keep on Top of Stress at Work

Just Like Any New, Burgeoning Shiny New Object, Healthcare CRM Has Its Own Challenges

How Predictive Analytics And Big Data In Healthcare Can Improve Care

When The Doctor Is Hurting: Ergonomic Solutions For Medical Professionals

The AMA Will Release 335 CPT Code Updates Next Year

Assessing The Value Of Patients’ Fitness Trackers

Addressing Addiction In Primary Care

3 Key Benefits of Personalizing Patient Price Transparency

The AMA Will Release 335 CPT Code Updates Next Year

Medical Data & Patient Privacy: An Update

Tackle Telemedicine Coding With These CPT® and CMS Pointers

What Is Interoperability and Why Is It Important in Healthcare?

8 Health & Safety Apps & Devices to Recommend to Your Patients

Mobile Medical Apps: A Game Changing Healthcare Innovation

What Is Interoperability and Why Is It Important in Healthcare?

How a New Patient Experience Model Will Drive the Future of Connected Healthcare?

EHR For Rural Hospitals: Criteria And Access

How Big Data Can Be Used To Prevent Fatal Heart Attack

Patient-Generated Health Data: a Shift in Care Delivery?

How Financial Barriers are Slowing Down Telehealth Adoption

Should Healthcare Care About Branding?

How can Healthcare Professionals Manage their Reputation Online

How to Handle Negative Physician Reviews and Feedback

5 Effective Ways to Market Healthcare to Millennials

5 Basic Types Of Eye Tests That Are Part Of An Eye Exam

Can Technology Help Reduce Cases Of Hospital Negligence?

Playing God: Bioengineering and the Future of Medicine

What Can Healthcare Learn From Manufacturing?

8 Health & Safety Apps & Devices to Recommend to Your Patients

Is Demand For Medical Device Outsourcing Increasing In The U.S.?

How PCB Design Can Improve Medical Electronics

MIGS Device Approval Brings Hope For Glaucoma Patients

Playing God: Bioengineering and the Future of Medicine

Just Like Any New, Burgeoning Shiny New Object, Healthcare CRM Has Its Own Challenges

Is Demand For Medical Device Outsourcing Increasing In The U.S.?

Why The Operating Room Integration System Market Is About To Grow

5 Habits That Negatively Affect Your Health

10 Ridiculously Cool Facts You Did Not Know About CBD Vape Oil

4 Common Eye Test Myths That Optometrists Want You To Know About

Minimizing Data Chaos in the Healthcare Industry

How a New Patient Experience Model Will Drive the Future of Connected Healthcare?

Avoiding Accidents and Injury at the Gym

5 Critical Health Risks That Can Be Deadly For Seniors

5 Popular Non-Invasive And Non-Surgical Cosmetic Procedures

10 Ridiculously Cool Facts You Did Not Know About CBD Vape Oil

The Complicated Rise of Interventional Cardiologists

How Big Data Can Be Used To Prevent Fatal Heart Attack

Peripheral Vascular Stenting to 2020

In Praise of FDA Collaboration: The Cardiac Safety Example

Understanding Alzheimer’s Disease: What’s Next? [Infographic]

Why Primary Care Physicians Are the Next Phase in CCRC Care

The Dos and Don’ts of Handling Elderly Patients

Five Fields In Healthcare That Are Quickly Growing

The Weight Conscious Doctor: Why Sensitivity Matters

Top 5 Reasons Why you’re Not Losing Weight on Your Diet

Starting a New Eating Plan? What you Need to Know about Macro and Micronutrients

Should You Recommend Bariatric Surgery to Obese Patients?

What Is Scoliosis? 4 Ways To Treat It

Do it like Disney: Developing Orthopedic Centers of Excellence

Lessons on Building a Great Ortho Team from The Avengers

What Orthopedic Patients Want this Holiday Season

Radiology as an Enterprise Model for Collaboration

Relationship Between Clinical Decision Support Systems (CDSS) & Radiology Must Evolve

Diagnostic Reading #33: Five Must-Read Articles from the Past Week

2015 CPT Coding Changes and Your Radiology Practice

How Healthcare Professionals Can Keep on Top of Stress at Work

Why we need Pilates today

Avoiding Accidents and Injury at the Gym

The Developmental Necessity Of Free Play For Children

Surprising Facts You Didn’t Know About Nutrition

Everything You Need To Know About Hair Loss Symptoms, Causes, and Prevention

5 Easy Tips To Help Your Kids And Teens Eat Healthy