QUESTION IMAGE
Question
a new cloud application being developed by fictional corp will be accessible through their website and provide services for a price. direct payment acceptance through the application is something they hope to be able to do. which of the following requirements should they check to see if they are in compliance?
○ iso/iec 27001
○ ssae 18
○ hipaa
○ pci dss
The problem is about a cloud application that handles direct payment acceptance. PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment. Since the application is for direct payment acceptance, checking compliance with PCI DSS is relevant. ISO/IEC 27001 is about information security management systems in general, SSAE 18 is related to service organization reporting, and HIPAA is for healthcare data privacy. So PCI DSS is the correct choice here.
Snap & solve any problem in the app
Get step-by-step solutions on Sovi AI
Photo-based solutions with guided steps
Explore more problems and detailed explanations
PCI DSS