I wrote a post in 2009 that is now the all-time, third most popular post on this blog entitled, The Definition of Cardholder Data. I wrote it after leaving the 2009 PCI Community Meeting where there was more bickering and positioning on what constitutes cardholder data than I had ever seen. My experiences there prompted the post, and I figured it was time to go back and revisit it for PCI DSS 3.0.
Go check out the updates and see if it is any more helpful!
On a side note, I have formally accepted a new, exciting position with an amazing company. More on that in the coming weeks!