What is PCI Compliance?
The major credit card issuers created PCI (Payment Card Industry) compliance standards to protect personal information and ensure security when transactions are processed using a payment card. All members of the payment card industry (financial institutions, credit card companies and merchants) must comply with these standards if they want to accept credit cards. Failure to meet compliance standards can result in fines from credit card companies and banks and even the loss of the ability to process credit cards.
Why is PCI important?
Identity is an extremely valuable commodity in this modern business world. Customers are becoming more and more aware of the need to guard their personal information and to demand a high level of data security around any electronic transactions they make. The PCI DSS was created to be a standard and a measure against which merchants can be judged and a tool to help them achieve the necessary level of security.
What is the PCI DSS Self-Assessment Questionnaire?
The PCI Data Security Standard Self-Assessment Questionnaire is a validation tool intended to assist merchants and service providers who are permitted by the payment brands to self-evaluate their compliance with the Payment Card Industry Data Security Standard (PCI DSS). There are four versions of the PCI DSS SAQ (SAQ A, SAQ B, SAQ C, and SAQ D) to choose from to meet your business needs.
What is PCI PED?
PCI PED is a security standards program for debit PIN entry devices to protect consumer PIN data from theft. PCI PED security requirements only affect devices that are used for debit card payment acceptance, and will be updated every three years to accommodate changing technology.
What is PA DSS?
Payment Application Data Security Standard (PA-DSS) is designed to help implement secure payment applications at merchant locations by confirming sensitive cardholder data – such as full magnetic stripe, credit card security code, or PIN data – is not stored. PA-DSS compliance can only be accurately verified by a qualified application audit facility.