What is Cardholder Information Security Program?
The Cardholder Information Security Program (CISP) is a standard used by credit card companies to protect cardholder information during transactions and processing on the Internet, over the phone, or at the point of sale, and includes standards for how this sensitive data should be stored by merchants.
CISP was developed by Visa USA and has been commissioned since 2001.
The cardholder information security program is designed to ensure that Visa cardholder data is protected wherever it is located. It ensures that members, merchants and service providers who use the Visa brand adhere to the highest levels of security in protecting cardholder information to avoid financial loss.
In 2004, the CISP requirements were incorporated into the Payment Card Industry (PCI) Data Security Standard (DSS), which was a joint venture between Visa and MasterCard, to have a common industry standard for credit card security requirements. On September 7, 2006, ownership, maintenance, and distribution of PCI DSS was transferred to the PCI Security Standards Council (SSC).