< Back

7.1.1 PCI DSS (v3.2.1)

Compliance Standard

Compliance Version

Control ID

PCI DSS

(v3.2.1)

7.1.1

Requirement 7: Restrict access to cardholder data by business need to know

(v3.2.1)

Define access needs for each role, including:
• System components and data resources that each role needs to access for their job function
• Level of privilege required (for example, user, administrator, etc.) for accessing resources.