What is PCI DSS

The Payment Card Industry Data Security Standard (PCI DSS) is a set of mandatory requirements to help ensure safe handling of card payment data.

Created by the five major card schemes, American Express, JCB, MasterCard, Visa and Discover Financial Services, it was developed to help reduce card data theft and the resulting fraud.

Who needs to comply?

Every business must comply with the PCI DSS

Compliance to DSS applies to all businesses that take credit and debit cards, regardless of size or transaction volume. Any business involved in the storage, processing and/or transmission of payment card numbers must comply.

A business that fails to meet the PCI DSS requirements could be fined by the card schemes should it suffer a data breach. It could also result in a loss of customer confidence.

If you would like more detailed information, please visit the PCI Security Standards Council website at: