Cardholder Information Security Program

What Does Cardholder Information Security Program Mean?

The cardholder information security program (CISP) is a standard used by credit card companies in order to protect cardholder information during transactions and processing on the internet, over the phone or at the point of sale, and includes standards on how this sensitive data should be stored by merchants.


CISP was developed by Visa USA and has been mandated since 2001.

Techopedia Explains Cardholder Information Security Program

The cardholder information security program is intended to ensure that Visa cardholder data is protected wherever it resides. It ensures that members, merchants, and service providers utilizing the Visa brand maintain the highest security standards in protecting cardholder information to prevent financial loss.

In 2004 CISP requirements became integrated into the Payment Card Industry (PCI) Data Security Standard (DSS), which was a joint venture by Visa and MasterCard, in order to have a common industry standard for credit card security requirements. On September 7, 2006, ownership, maintenance, and distribution of PCI DSS was transferred to the PCI Security Standards Council (SSC).


Related Terms

Margaret Rouse
Technology Expert

Margaret is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical business audience. Over the past twenty years, her IT definitions have been published by Que in an encyclopedia of technology terms and cited in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine, and Discovery Magazine. She joined Techopedia in 2011. Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages.