Welcome to N.G.A. Welcome to N.G.A. Welcome to N.G.A.
Operational Programs & Services

Regulatory/Compliance Issues

PCI Data Security Standard (PCI DSS)
"Implement and Excute"

Many companies are concerned about the issues of PCI compliance and assessment.

CSRSI has provided a number or guidelines and tips to ensure your company is on the road to PCI compliance.  Some helpful guidelines to follow for PCI compliance include:

  • Review of all written policies and procedures.
  • Prepare breech response protocols.
  • Implement and execute physical security procedures in-store, such as:
    • Protect servers  - individual stores and central locations;
    • Password control and policies;
    • Secure electronic devices on selling floor control;
    • Policies and procedures with effective enforcement
    • Restrict physical access to cardholder data, restrict access of all credit card numbers at various locations within the store(s) including the bakery, deli, pharmacy and flower departments, places typically where phone orders are taken.

For your review CSRSI has provided two white papers:

WEBINAR -- Data Breach Planning and Response: Issues, Insights & Actions  

You can’t afford to be caught unprepared. A data breach that compromises your organization not only puts you at risk of massive monetary losses, but also at risk of losing your most valuable asset: the confidence and loyalty of your customers. Knowing how to prepare and plan for a data breach will give you the power to respond quickly and confidently. Learn how to create a preventative game plan by outlining important steps that your financial institution can take to:

  • Gain a better understanding of the issue.
  • Develop strategies to act swiftly and confidently should a data breach occur.
  • Monitor and revise an action plan based on the institution’s experience in responding to a data breach, or on new information or intelligence.

Click here to view the Webinar.

Employment Law Guide
The U.S. Department of Labor (DOL) has released the newly revised edition of its Employment Law Guide.  The Employment Law Guide describes in plain language the major employment laws and regulations enforced by DOL.  The Guide is available in English or Spanish and is written in plain language to assist employers in developing wage, benefit, safety and health and nondiscrimination policies for their businesses.  With the use of this Guide, you will be better equipped to comply with DOL worker protection rules and regulations. 

Visa Check / MasterMoney Settlement Information
1.

Merchant Advisory: Extention of Claim Filing Deadline (October 12, 2005) .doc
2. Merchant Advisory: Merchants who receive multiple forms should file those with estimated cash payments listed. (October 12, 2005) .doc

FDA Bioterrorism Regulations:

Recordkeeping Requirement Guide for Grocers (.doc)
October 17, 2005

FDA Issues Final Regulations on Food Recordkeeping

Action Alert - December 6, 2004
In a major new rule affecting retailers and wholesalers, the Food and Drug Administration issued final regulations under the Bio-terrorism Action that requires the establishment and maintenance of records for companies that manufacture, process, pack, transport, distribute, receive, hold or import food into the United States. Businesses with 500 or more employees must comply by December 9, 2005. Businesses with 11-499 full-time employees must comply by June 9, 2006. Businesses with 10 or fewer employees must comply by December 9, 2006. For more information on the FDA final rule please refer to the Press Release, Fact Sheet, Public Meetings and Guidance.
National Grocers Association
1005 N. Glebe Road, Suite 250, Arlington, Virginia 22201-5758 (703) 516-0700 fax (703) 812-1821