What Merchants Need to Know About PCI DSS v.4.0

In a joint webinar between TokenEx and MRC, TokenEx CTO John Noltensmeyer highlighted important changes to PCI DSS 4.0 that merchants should know.

In this webinar, merchants will learn how to prioritize and comply with the upcoming changes and access helpful PCI DSS compliance resources. The resources shared in the webinar can be accessed here.

The Payment Card Industry Data Security Standard (PCI DSS) was created to protect payment card data and ensure all members of the payments ecosystem are securely storing, processing, and transmitting cardholder data securely. PCI DSS, v3.2.1, will be replaced on March 31, 2024, with v 4.0. There are a number of noteworthy changes in the new version and the sooner merchants understand the impact the sooner they can start working to ensure that they remain PCI compliant when v3.2.1 is retired.

A few of the new or updated requirements in the PCI DSS 4.0 include:

  • Password length and complexity requirements 
  • Management of all ecommerce payment page scripts
  • PCI DSS scope documentation 
  • Security awareness training 
  • Incident response procedures