More
Compliance Standard
Compliance Version
Control ID
PCI DSS
(v3.2.1)
7.2.3
Requirement 7: Restrict access to cardholder data by business need to know
Default “deny-all” setting.