PCI Compliance

Definition

If you accept, process, store or transmit credit, debit or prepaid card information, you must be Payment Card Industry Data Security Standard (PCI DSS) compliant.

PCI compliance means meeting and constantly maintaining and monitoring a set of six security objectives agreed and enforced by the Payment Card Industry Standards Council (an organization founded by the leading card providers including MasterCard and American Express); in order to ensure cardholder transactions and associated data, including account numbers, cardholders’ names, card expiration dates or service codes are secure.

The objectives cover network, systems, software and hardware security, employee training, the physical security of premises where transactions are handled, data storage, data access and reporting.

Related terms: GDPR .