Created by Visa, the Cardholder Information Security Program (CISP) outlines requirements for security procedures for merchants and service providers that store, process, or transmit cardholder data. Visa defines cardholder data as any of the following:

• Account number
• CVV (Card Verfication Value)
• Expiration date
• Cardholder Name
• Cardholder Address

Credit Card associations aligned their security policies for cardholder information into a single standard, PCI. If you are CISP compliant, your next audit will follow PCI requirements. Learn more about CISP.

The information provided here by Yahoo! as of 6/17/05 is for informational purposes only. Yahoo! makes no representation as to the accuracy of this information and merchants are advised to use the links to credit card associations provided within these documents for the CISP/PCI information and latest updates. Please note that the credit card association security programs may change without notice at any time.

See Also

• What is PCI?
• How will I know if I need to be CISP/PCI compliant?
• Is Yahoo! Merchant Solutions a CISP-compliant service provider?
• Am I compliant because Yahoo! is a CISP-compliant service provider?
• How do I become CISP/PCI-compliant?
• What information does Yahoo! provide my auditors to determine my compliance?
• Which auditor should I use to check for PCI-compliance?