Payment Card Industry Data Security Standard

The PCI DSS was created by the major credit card companies (Visa, Mastercard, American Express, Discover, and JCB) in order to establish a common set of security requirements for merchants, service providers, and other organisations that handle credit card data.

The PCI DSS includes 12 requirements that cover a variety of security measures, including:

• Building and maintaining a secure network
• Protecting cardholder data
• Maintaining a vulnerability management program
• Implementing strong access control measures
• Regularly monitoring and testing networks
• Maintaining an information security policy