Payment Card Industry Data Security Standards (PCI-DSS)
PCI stands for the Payment Card Industry. The Payment Card Industry Security Standards Council (PCI-SSC, founded in 2006) is the organization by the brands (Visa, MasterCard, Discover, American Express, and JCB) to create a set of minimum security standards to ensure the safe handling of credit card data. That minimum set of security standards is called the Payment Card Industry Data Security Standards – PCI-DSS. These standards must be adhered to by all merchants and anyone who collects, transmits, processes, OR stores sensitive credit card information on behalf of merchants.
How Does PCI Compliance Affect my Business?
All Merchants are required to be compliant with PCI-DSS every year. This includes merchants whose credit card processing is handled entirely by a Third-Party (also known as a Service Provider).
PCI is not a government law – but if a Merchant wants to process credit cards as a convenience to their customers, failure to abide by PCI and the card brand regulations can directly impact the Merchant’s ability to do so - and have a very real impact on their business as a result.
How Do I Become PCI Compliant?
Getting started with Aperia PCI DSS Compliance Program (recommended by Paya) to become PCI Compliant is easy!
Note: PCI Compliance is required of ALL businesses that process, store or transmit credit card information.
If you have questions or require additional information, please submit a ticket and we will be in touch with you shortly.