The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for any organization that handle or store cardholder information for the major debit, credit, prepaid, e-purse, ATM and Point-of-Sale (POS) cards. PCI DSS applies to all entities involved in payment card processing. This includes merchants, processors, acquirers, issuers and service providers as well as all other entities that store, process or transmit cardholder data. The security standard requirements are developed and maintained by Payment Card Industry (PCI) Security Standards Counsil.

Some goals contained within the PCI DSS security standard includes
  • Build and maintain a secure network
  • Implement strong access control measures
  • Protect Cardholder data
  • Regularly monitor and test networks
  • Maintain a vulnerability management program
  • Maintain an information security policy