Payment card industry data security standard
Does your company store, process or transmit cardholder data?
All companies that store, process or transmit cardholder data now have to comply with PCI DSS (Payment Card Industry Data Security Standard) – regulation issued by Visa and MasterCard, but endorsed by AMEX and Diners also.
The standard applies to all IT systems and components, including servers, applications and databases throughout the transaction process. It also applies to the manual processes and procedures that are an integral part of any successful security and fraud management solution.
Non compliance may lead to a charge being levied by card issuers. Furthermore, if a company is non-compliant and cardholder data is compromised, this could result in the loss of the right to take credit card payments.