EC-Council Certified Security Analyst (ECSA v8) — Question 17

Which of the following acts is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e- purse, ATM, and POS cards and applies to all entities involved in payment card processing?

Answer options

• A. PIPEDA
• B. PCI DSS
• C. Human Rights Act 1998
• D. Data Protection Act 1998

Correct answer: B

Explanation

The correct answer is PCI DSS, which specifically outlines security measures for entities that process payment cards. PIPEDA, Human Rights Act 1998, and Data Protection Act 1998 do not focus on payment card security but rather on broader privacy and human rights issues.