💼 9.4.4 A visitor log is used to maintain a physical audit trail of visitor activity to the facility as well as computer rooms and data centers where cardholder data is stored or transmitted.

• ID: /frameworks/pci-dss-v3.2.1/09/04/04

Description

Document the visitor's name, the firm represented, and the onsite personnel authorizing physical access on the log.

Retain this log for a minimum of three months, unless otherwise restricted by law.

Similar

• Sections
  • /frameworks/pci-dss-v4.0/09/03/04
• Internal
  • ID: dec-c-0ad02536

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 9.3.4 A visitor log is used to maintain a physical record of visitor activity within the facility and within sensitive areas.					no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 9.3.4 A visitor log is used to maintain a physical record of visitor activity within the facility and within sensitive areas.					no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance