Essentially, PCI DSS is not concerned with disaster recovery. PCI doesn't care if transactions can be recovered; PCI DSS only cares about whether sensitive authentication data (SAD) and cardholder data (CHD) are secure.
Data centers generally support the storage, processing, and transmission of data. This data is potentially vulnerable to theft and misuse. As a result, PCI DSS has a set of requirements to establish best practices and mitigate attack vulnerabilities.
We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!
PCI DSS GUIDE's aim is to clarify the process of PCI DSS compliance as well as to provide some common sense for that process and to help people preserve their security while they move through their compliance processes.
The PCI DSS requirements apply to all system components, including people, processes and technologies that store, process or transmit cardholder data or sensitive authentication data, included in or connected to the cardholder data environment.