A medical organization recently started accepting payments over the phone. The manager is concerned about the impact of the storage of different types of data.
Which of the following types of data incurs the highest regulatory constraints?
A. PHI
B. PCI
C. PII
D. IP
CS0-002: CompTIA CySA+ ExamFULL Printable PDF and Software. VALID exam to help you PASS. |
B.
Payment Card Industry (PCI) DSS Requirements:
Install and maintain a firewall configuration to protect cardholder data.
Do not use vendor-supplied defaults for system passwords and other security parameters. …
Protect stored cardholder data.
Encrypt transmission of cardholder data across open, public networks.
definetly A, PCI is not a regulation