Can I store a BIN and associate it to a customer without breaking PCI compliance... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		kirkbackus on July 23, 2014 \| parent \| context \| favorite \| on: Ribbon BIN API – Find out how your customers are p... Can I store a BIN and associate it to a customer without breaking PCI compliance?

duskwuff on July 23, 2014 [–]

You're allowed to store up to the first six and last four digits of a credit card number without encryption.

bradbeattie on July 23, 2014 | [–]

https://www.pcisecuritystandards.org/documents/pci_dss_v2.pd..., PCI DSS 3.3 would seem to be the most applicable section here.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact