Summary of the Company's Business.
HC DataPro is a for profit Data electronic payment processing company. It moves more than 5 million merchants and 1,700 card issuers in over 30 countries. It provides services such as credit card payment processing, fraud protection, authentication, check guarantee, electronic bill payment management and point of sale services. It provides financial services for many companies across many sectors or industries and must meet compliance of security standards set in all industries they do business with and laws of areas where they conduct their business.
Information Security Laws that the company must comply with.
• Gramm-Leach-Blile Act
• Health Insurance Portability and Accountability Act
• Fair and Accurate …show more content…
This law applies to any retailer or financial service that accepts credit/debit cards and stores personally identifiable information (PII) in its system. This law is aimed at setting the security standards for networks that house personably identifiable information of credit/debit card holders. Any PII such as names, card numbers, social security numbers, and security pin codes which could be stolen and misused for fraud or identity theft purposes must be protected and this regulation sets a strong security standard. (elementps.com, 2013)
Summarize the requirements that relate to confidentiality, integrity and availability.
There are six areas that are addressed in this regulation. These areas are put in place to help keep the C-I-A of this information intact. Although all of three areas of information security is important the focus on, this regulation addresses much more on the confidentiality and integrity of the information and less on the availability of the information.
• Build and Maintain a Secure Network
• Protect Cardholder