PCI DSS Compliance Resources
Expert articlesPCI DSS 3.1: In Review of the Old Standard
The PCI DSS is a set of security standards created by the Payment Card Industry Security Standards Council (PCI SSC). The council was formed by the major credit card companies (Visa, MasterCard, Discover, American Express, and JCB) in 2006 to establish a common set of...
PA DSS vs. PCI DSS:Main Differences
There are two major compliance frameworks in the payments industry: PA-DSS and PCI DSS. These frameworks have different requirements for businesses that process, store or transmit credit card data. PA-DSS is a compliance standard specifically for software vendors that...
PCI Password Requirements
PCI (Payment Card Industry) password requirements exist to ensure that only authorized individuals have access to sensitive data. PCI passwords must be at least 8 characters in length and include a mix of uppercase and lowercase letters, numbers, and symbols. The...
PCI Compliance Fines 2022: All You Need to Know
PCI compliance fines can be costly and range from hundreds to thousands of dollars. Non-compliance can also lead to suspension of your merchant account, seriously hurting your business. To avoid these penalties, it's important to make sure you're PCI compliant. PCI...
How to Become PCI compliant?
There is no one-size-fits-all answer to this question, as the necessary steps for becoming PCI compliant will vary depending on your organization's specific needs. However, there are some general guidelines that all organizations should follow to ensure compliance...
What You Need to Know About PCI DSS 4.0 New Requirements
In keeping with its ongoing goal of safeguarding cardholder information, the PCI Security Standards Council (PCI SSC) is rolling out a new version of its Payment Card Industry Data Security Standard (PCI DSS). This updated iteration came from extensive feedback from...
How Long Does PCI Compliance Take
While data breaches did not always receive the level of attention they garner today, they presented pressing problems to both businesses and credit card companies as far back as the 1990s. Although the card providers had made attempts to resolve these issues on their...
PCI DSS Service Provider
If your company shares any cardholder data with a third party, that vendor is considered by the payment card industry to be a service provider. As such, it needs to meet PCI DSS service provider standards to assure and protect the security of the information it holds,...
PCI Compliance for Small Business
When customers’ sensitive information is stolen during a data breach, the financial and resource costs to those buyers as well as to the retail merchants involved can be significant. In an effort to protect customer information during the payment transaction process,...
PCI DSS Compliance Fines and Consequences
Data security is one of the highest priorities for modern businesses. Recognizing this critical need, the five major credit card companies formed the Payment Card Industry Security Standards Council (PCI SSC). In due course, that consortium devised the new Payment...