PCI Requirement 9.3 – Control Physical Access for Onsite Personnel to Sensitive Areas
Physical Access Requirements for Onsite Personnel Physical access requirements don’t only apply to visitors, they also apply to your onsite personnel. PCI Requirement 9.3 focuses on controlling physical access to sensitive areas for onsite personnel. Your organization should determine specific sensitive areas where cardholder data is stored, processed, or transmitted and specific onsite personnel who have been granted physical access to these areas. Physical access to sensitive areas must be…