This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print page

Payment Card Industry Data Security Standard (PCI DSS)

The PCI DSS is a set of comprehensive requirements for enhancing payment account data security. It was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB, MasterCard Worldwide and Visa International, to help facilitate the broad adoption of consistent data security measures on a global basis. 

Who needs to comply? 

Any merchant, acquirer and issuer bank, and service provider that processes, stores or transmits credit or debit card data, and any connected party to them.

Does PCI DSS apply to you?
  • Do you process credit card transactions?
  • Do you store credit card information? (paper or electronically)
  • Do you take online credit card payments?
  • Do you handle credit card information on paper, online, over the phone or via mail?

If you answered yes to any of the above questions PCI DSS applies to you.


Dig deeper

  • Payments Outlook 2011
    With ongoing legislative changing on the horizon and the ever-changing financial landscape, the payments industry potentially faces a period of change.
  • ExternalURL
  • ExternalURL
  • ExternalURL
  • ExternalURL
  • ExternalURL
  • ExternalURL

Talk to the team

  • ExternalURL
    Anu Nayar
    Head of Security, Privacy and Resilience
Stay connected:
Get connected
Share your comments


More on Deloitte
Learn about our site