A global forum that brings together payments industry stakeholders to develop and drive adoption of data security standards and resources for safe payments.

The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive security requirements designed to protect cardholder data during payment processing, storage, and …

Apply Secure Configurations to All System Components. 3. Protect Stored Account Data. 4. Protect Cardholder Data with Strong Cryptography During transmission Over Open, Public Networks. 5. …

PCI DSS provides a baseline of technical and operational requirements designed to protect account data. PCI DSS applies to all entities involved in payment card processing—including merchants, …

Additional resources that provide guidance on PCI DSS requirements and how to complete the self-assessment questionnaire have been provided below to assist with the assessment process.

When a TPSP provides services that are intended to meet or facilitate meeting a customer’s PCI DSS requirements or that may impact the security of a customer’s cardholder data and/or sensitive …

A Reference for Merchants and Service Providers to Become Compliant with PCI version 4.0

To avoid these penalties, organizations should ensure they remain compliant with the latest PCI DSS standards, implement robust security measures, and undergo regular audits or assessments to …

Apr 10, 2026 · Need to meet PCI 4.0.1 requirements? Learn what changed in PCI DSS 4.x, what became mandatory March 31, 2025, and the first steps to close gaps.

This Quick Reference Guide to the PCI Data Security Standard (PCI DSS) is provided by the PCI Security Standards Council (PCI SSC) to inform and educate merchants and other entities involved …