Assigning a Unique ID to Each Person with Computer Access

Oracle Corporation recognizes the importance of establishing unique IDs for each person with computer access. No two Oracle Hospitality Integration Platform users can have the same ID, and each person’s activities can be traced, provided the customer maintains proper configuration and adheres to privilege level restrictions based on a need-to-know basis.

While Oracle Corporation makes every possible effort to conform to Requirement 8 of the PCI Data Security Standard, certain parameters, including proper user authentication, remote network access, and password management for non-consumer users and administrators, for all system components, depend on customer / partner specific protocol and practices.

To ensure strict access control of the Oracle Hospitality Integration Platform always assign unique user names and complex passwords to each account. Oracle Corporation mandates applying these guidelines to not only Oracle Corporation passwords, but to passwords for systems accessing Oracle Hospitality Integration Platform APIs and downstream of there, including server operating system passwords and end user Windows® passwords. Furthermore, Oracle Corporation advises users to control access, through unique user names and PCI-compliant complex passwords, to any PCs, servers, and databases with payment applications and cardholder data.