← Cybersecurity Alphabet Soup

PCI DSS

Payment Card Industry Data Security Standard

governanceeasy

A contractual security standard that applies to any organization that stores, processes, or transmits payment card data. It defines requirements like network segmentation, encryption, access control, and regular testing. It is enforced by the card brands rather than by governments, but noncompliance can mean fines and losing the ability to accept cards.

Sources

More in governance