Acertigo  
l DE  l EN  
Company
Customers
Services
Team
Careers
Contact
PCI Certification
for Merchants
for Service Providers
for Software Vendors
for Acquirer/Processors
Compliance Services
Audit & Assessment
Software as a Service
Imprint

 
 
 
 
                                                                      
l Home l Compliance Services l Audit & Assessment

The PCI DSS Standard


The Payment Card Industry Data Security Standard (PCI DSS) is a set of comprehensive requirements for enhancing payment account data security. The PCI DSS was jointly developed by Visa International, MasterCard, American Express, JCB and Discover several years ago. In 2006 the PCI Security Standard Council [PCI SSC] was founded by these card organisations to help facilitate the broad adoption of consistent data security measures on a global basis.
 
The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organizations for proactively protect customer account data.
 
The PCI DSS is a group of principles and accompanying requirements, grouped in six main sections addressing more than 300 single requirements. The six main sections are:
 
  • Build and Maintain a Secure Network
  • Protect Cardholder Data
  • Maintain a Vulnerability Management Program
  • Implement Strong Access Control Measures
  • Regularly Monitor and Test Networks
  • Maintain an Information Security Policy

PCI DSS applies to every bank, processor, payment service provider or merchant who stores, processes, or transmits cardholder or transaction data by his own or on behalf of one of the other entities.