PCI DSS


Also found in: Dictionary, Thesaurus, Medical, Legal, Acronyms, Wikipedia.

PCI DSS

(Payment Card Industry Data Security Standard) Security procedures from the PCI Security Standards Council for merchants that accept credit cards online. It includes guidelines for user authentication, firewalls, antivirus, encryption, truncating account numbers, programming maintenance and vulnerability testing.

The primary issue is the handling of customers' credit card numbers. To be PCI compliant, a merchant must provide strong encryption of the numbers for storage and transmission or use a third-party token service (see token). For more information, visit www.pcisecuritystandards.org. The PCI DSS Quick Reference Guide is available at http://bit.ly/1aVst18. See Qualified Security Assessor, Internal Security Assessor and Approved Scanning Vendor.
References in periodicals archive ?
A trusted third party that complies with PCI DSS demonstrates proven adherence to a recognised security standard, which can also help contact centres to meet the GDPR legislation.
PCI compliance standards require companies to complete an annual Self-Assessment Questionnaire (SAQ) to validate PCI DSS compliance.
Intended to protect sensitive cardholder data, the PCI DSS has 12 high level requirements, encompassed in six categories:
The PCI DSS Level 1 certification will enable Womply to provide faster, easier onboarding to PCI DSS Level 1 partners.
RandomStorm is a CESG CHECK security consultancy, as well as a Qualified Security Assessor (QSA) and an Approved Scanning Vendor (ASV) for the Payment Card Industry Data Security Standard (PCI DSS).
The PCI DSS is the uniform and globally recognised security standards intended to optimize the security of credit and debit card transactions, secure sensitive cardholder information during storage and transmission and protect cardholders against fraud and misuse of their personal information.
The PCI DSS is one of the internationally accredited standards of compliance and security developed to protect credit cardholders' personal information and prevent credit card fraud.
"PCI DSS is used by all major card brands as the common security standard for their compliance programs," the BancNet statement read.
The firm noted that only 29% of firms that validated their payment systems remained compliant with PCI DSS within one year after their validation.
MegaPath Corporation has launched its PCI DSS 3.0 Compliance Solutions, enabling merchants to adhere to the Payment Card Industry's latest Data Security Standards while protecting against data breaches.
14 -- The real-time IT management firm ManageEngine has announced the addition of payment card industry data security standard (PCI DSS) 3.0 compliance reporting to EventLog Analyzer, its security information and event management (SIEM) software.
28 -- Pacnet, a leading provider of integrated technology solutions in the Asia-Pacific region, has attained PCI Data Security Standard (PCI DSS) 2.0 Certification and Attestation of Compliance for its CloudSpace data centers in Sydney (SYCS1); Hong Kong (HKCS1 and HKCS2); and Singapore (SGCS2).