PCI DSS Compliance Requirement 9: Restrict physical access to cardholder data

Camio supports PCI DSS Compliance Requirement 9.1.1 with a simple and reliable way to securely monitor sensitive areas. Camio provides 90-day encrypted video history and bandwidth-efficient continuous recording for tamper-proof auditability of access to sensitive areas.

See The Prioritized Approach to Pursue PCI DSS Compliance Requirement 9, which says:

Requirement 9: Restrict physical access to cardholder dataUse appropriate facility entry controls to limit and monitor physical access to systems in the cardholder data environment.

9.1.1 Use video cameras and/or access control mechanisms to monitor individual physical access to sensitive areas. Review collected data and correlate with other entries. Store for at least three months, unless otherwise restricted by law.

Note: “Sensitive areas” refers to any data center, server room or any area that houses systems that store, process, or transmit cardholder data. This excludes public-facing areas where only point-of sale terminals are present, such as the cashier areas in a retail store.

Have more questions? Submit a request