21
Compliance, Enforcement mechanism and its effectiveness
There are various issues in the e
–
commerce industry that needs to be addressed. To
tackle
all these challenges, it requires proper compliance & enforcement of the same.
There are lots of international organizations that try to enforce the law. The following are
some of the organizations & the mechanisms that are followed for enforcement of legal
measures in the e-commerce industry
PCI Compliance
The main component for an e-commerce transaction is either a credit card/debit card/gift
cards via the internet. This is the place where lots of security threats are inherent in the
system. The PCI industry has established a compliance standard known as PCI-DSS.
Any merchant who takes payment through a credit/debit card has to comply with PCI rules
& regulations. If a merchant is specifically storing the credit/debit card data with him then
he has to further sign an agreement under the PCI data security standard.
Specifically, if a merchant accepts payment from American Express, VISA, MasterCard
& other international debit/credit cards it is mandatory to be a part of PCI compliance.
There are a variety of merchant accounts that involved in
a transaction such as the
merchant website, the merchant financial account & the merchant itself. All these
normally comply with the PCI rules.
Technology Compliance & SSL Compliance
All the e-commerce transactions are recorded by a server of the seller.
Hence server
compliance is mandated by law & law directs the payment
card industry to ensure
technology compliance as a part of maintaining data security. Further,
the SSL
compliance requires that a merchant obtains a separate
IP address maintains proper
records & uses a recent browser for a transaction.
