Skip to main content

💼 9.5.1 POI devices that capture payment card data via direct physical interaction with the payment card form factor are protected from tampering and unauthorized substitution.

Contextual name: 💼 9.5.1 POI devices that capture payment card data via direct physical interaction with the payment card form factor are protected from tampering and unauthorized substitution.
ID: /frameworks/pci-dss-v4.0/09/05/01
Located in: 💼 9.5 Point of interaction (POI) devices are protected from tampering and unauthorized substitution.

Description

Including the following:

Maintaining a list of POI devices.
Periodically inspecting POI devices to look for tampering or unauthorized substitution.
Training personnel to be aware of suspicious behavior and to report tampering or unauthorized substitution of devices.

Similar

Sections
- /frameworks/pci-dss-v3.2.1/09/09
- /frameworks/pci-dss-v4.0.1/09/05/01
Internal
- ID: dec-c-5b1269ea

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v3.2.1 → 💼 9.9 Protect devices that capture payment card data via direct physical interaction with the card from tampering and substitution.	3		1
💼 PCI DSS v4.0.1 → 💼 9.5.1 POI devices that capture payment card data via direct physical interaction with the payment card form factor are protected from tampering and unauthorized substitution.	3		1

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v3.2.1 → 💼 9.9 Protect devices that capture payment card data via direct physical interaction with the card from tampering and substitution.	3		1
💼 PCI DSS v4.0.1 → 💼 9.5.1 POI devices that capture payment card data via direct physical interaction with the payment card form factor are protected from tampering and unauthorized substitution.	3		1

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 9.5.1.1 An up-to-date list of POI devices is maintained.			1
💼 9.5.1.2 POI device surfaces are periodically inspected to detect tampering and unauthorized substitution.	1
💼 9.5.1.2.1 The frequency of periodic POI device inspections and the type of inspections performed is defined in the entity's targeted risk analysis.
💼 9.5.1.3 Training is provided for personnel in POI environments to be aware of attempted tampering or replacement of POI devices.

Policies (1)

Policy	Logic Count	Flags
📝 Google Cloud Asset Inventory API is not enabled 🟢	1	🟢 x6

Description
Similar
Similar Sections (Take Policies From)
Similar Sections (Give Policies To)
Sub Sections
Policies (1)