What is PCI Compliance?
The Payment Card Industry Data Security Standard (PCI DSS) is an industry requirement for securing cardholder data around the world. Established by the Payment Card Industry Security Standards Council (PCI SSC)—which consists of American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa Inc.—the PCI DSS must be followed if an organization wishes to process, store, or transmit the cardholder data of their customers issued by these card brands.
The people, processes, and technology within your organization that interact with or are exposed to payment card information are subject to the PCI DSS. To ensure your organization is PCI compliant, you’ll need to adhere to the 12 requirements, including more than 300 security checks, within the PCI DSS.
What is Needed for PCI Compliance?
To achieve PCI compliance, organizations need to follow 12 requirements laid out in the PCI DSS. These PCI compliance requirements fall under six overarching categories that provide an overview of the security controls necessary for PCI compliance. To learn more about PCI compliance requirements, download our PCI DSS Compliance Guide.