PCI DSS
Compliance

Have you ever wondered (or worried) about what happens to payment card data once a purchase is made? Probably not. The reason? We can attribute the safety of cardholder data to our unsung hero – PCI DSS, safeguarding the data – or so you’d hope. Are you PCI DSS compliant?

Here’s everything you need to know about PCI DSS, what it means for your business, and what you need to do to comply with its requirements. But first, let’s start with introductions.

What is PCI DSS

WHat is pci dss?

Introducing the Payment Card Industry Data Security Standard, or PCI DSS for short. To fully understand the framework, it’s important to take a step back to where it all started. In 2004, all five major credit card companies decided to join forces and use their powers for good. Together they created The PCI Security Standards Council (PCI SSC). Their mission? To create a set of security standards for organizations that process payment information, specifically cardholder data. And without further ado, they created a security standard known as - you guessed it -  PCI DSS. 

pci dss In A nutshell

PCI DSS focuses on three main components:

Handling access

Handling access to credit card data to protect sensitive card details when collected and transmitted.

the 12 security domains

Establishing the 12 security domains within the PCI standard to ensure data is stored securely. 

{"type":"elementor","siteurl":"https://scytale.ai/wp-json/","elements":[{"id":"e1c9445","elType":"widget","isInner":false,"isLocked":false,"settings":{"editor":"Annual validations (forms, questionnaires, external vulnerability scans, or third-party audits) to ensure the security controls are still in place.","align":"center","typography_typography":"custom","typography_font_family":"Noto Sans","typography_font_weight":"normal","typography_line_height":{"unit":"em","size":1.7,"sizes":[]},"__globals__":{"text_color":"globals/colors?id=primary"},"tooltip_content":"I am a tooltip","typography_font_size":{"unit":"rem","size":1.125,"sizes":[]},"typography_font_size_tablet":{"unit":"rem","size":1,"sizes":[]},"typography_font_size_mobile":{"unit":"rem","size":"","sizes":[]},"pa_condition_repeater":[],"drop_cap":"","text_columns":"","text_columns_tablet":"","text_columns_mobile":"","column_gap":{"unit":"px","size":"","sizes":[]},"column_gap_tablet":{"unit":"px","size":"","sizes":[]},"column_gap_mobile":{"unit":"px","size":"","sizes":[]},"align_tablet":"","align_mobile":"","text_color":"","typography_text_transform":"","typography_font_style":"","typography_text_decoration":"","typography_line_height_tablet":{"unit":"em","size":"","sizes":[]},"typography_line_height_mobile":{"unit":"em","size":"","sizes":[]},"typography_letter_spacing":{"unit":"px","size":"","sizes":[]},"typography_letter_spacing_tablet":{"unit":"px","size":"","sizes":[]},"typography_letter_spacing_mobile":{"unit":"px","size":"","sizes":[]},"typography_word_spacing":{"unit":"px","size":"","sizes":[]},"typography_word_spacing_tablet":{"unit":"em","size":"","sizes":[]},"typography_word_spacing_mobile":{"unit":"em","size":"","sizes":[]},"text_shadow_text_shadow_type":"","text_shadow_text_shadow":{"horizontal":0,"vertical":0,"blur":10,"color":"rgba(0,0,0,0.3)"},"drop_cap_view":"default","drop_cap_primary_color":"","drop_cap_secondary_color":"","drop_cap_shadow_text_shadow_type":"","drop_cap_shadow_text_shadow":{"horizontal":0,"vertical":0,"blur":10,"color":"rgba(0,0,0,0.3)"},"drop_cap_size":{"unit":"px","size":5,"sizes":[]},"drop_cap_space":{"unit":"px","size":10,"sizes":[]},"drop_cap_border_radius":{"unit":"%","size":"","sizes":[]},"drop_cap_border_width":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"drop_cap_typography_typography":"","drop_cap_typography_font_family":"","drop_cap_typography_font_size":{"unit":"px","size":"","sizes":[]},"drop_cap_typography_font_size_tablet":{"unit":"px","size":"","sizes":[]},"drop_cap_typography_font_size_mobile":{"unit":"px","size":"","sizes":[]},"drop_cap_typography_font_weight":"","drop_cap_typography_text_transform":"","drop_cap_typography_font_style":"","drop_cap_typography_text_decoration":"","drop_cap_typography_line_height":{"unit":"px","size":"","sizes":[]},"drop_cap_typography_line_height_tablet":{"unit":"em","size":"","sizes":[]},"drop_cap_typography_line_height_mobile":{"unit":"em","size":"","sizes":[]},"drop_cap_typography_word_spacing":{"unit":"px","size":"","sizes":[]},"drop_cap_typography_word_spacing_tablet":{"unit":"em","size":"","sizes":[]},"drop_cap_typography_word_spacing_mobile":{"unit":"em","size":"","sizes":[]},"_title":"","_margin":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_margin_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_margin_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_padding":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_padding_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_padding_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_element_width":"","_element_width_tablet":"","_element_width_mobile":"","_element_custom_width":{"unit":"%","size":"","sizes":[]},"_element_custom_width_tablet":{"unit":"px","size":"","sizes":[]},"_element_custom_width_mobile":{"unit":"px","size":"","sizes":[]},"_element_vertical_align":"","_element_vertical_align_tablet":"","_element_vertical_align_mobile":"","_position":"","_offset_orientation_h":"start","_offset_x":{"unit":"px","size":"0","sizes":[]},"_offset_x_tablet":{"unit":"px","size":"","sizes":[]},"_offset_x_mobile":{"unit":"px","size":"","sizes":[]},"_offset_x_end":{"unit":"px","size":"0","sizes":[]},"_offset_x_end_tablet":{"unit":"px","size":"","sizes":[]},"_offset_x_end_mobile":{"unit":"px","size":"","sizes":[]},"_offset_orientation_v":"start","_offset_y":{"unit":"px","size":"0","sizes":[]},"_offset_y_tablet":{"unit":"px","size":"","sizes":[]},"_offset_y_mobile":{"unit":"px","size":"","sizes":[]},"_offset_y_end":{"unit":"px","size":"0","sizes":[]},"_offset_y_end_tablet":{"unit":"px","size":"","sizes":[]},"_offset_y_end_mobile":{"unit":"px","size":"","sizes":[]},"_z_index":"","_z_index_tablet":"","_z_index_mobile":"","_element_id":"","_css_classes":"","eael_wrapper_link_switch":"","eael_wrapper_link":{"url":"","is_external":"","nofollow":"","custom_attributes":""},"pa_display_conditions_switcher":"","pa_display_action":"show","pa_display_when":"any","premium_fe_switcher":"","premium_fe_target":"","premium_fe_translate_switcher":"","premium_fe_Xtranslate":{"unit":"px","size":"","sizes":{"from":0,"to":5}},"premium_fe_Xtranslate_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Xtranslate_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_Ytranslate":{"unit":"px","size":"","sizes":{"from":0,"to":5}},"premium_fe_Ytranslate_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Ytranslate_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_trans_duration":{"unit":"px","size":1000,"sizes":[]},"premium_fe_trans_delay":{"unit":"px","size":"","sizes":[]},"premium_fe_rotate_switcher":"","premium_fe_Xrotate":{"unit":"deg","size":"","sizes":{"from":0,"to":45}},"premium_fe_Xrotate_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Xrotate_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_Yrotate":{"unit":"deg","size":"","sizes":{"from":0,"to":45}},"premium_fe_Yrotate_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Yrotate_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_Zrotate":{"unit":"deg","size":"","sizes":{"from":0,"to":45}},"premium_fe_Zrotate_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Zrotate_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_rotate_duration":{"unit":"px","size":1000,"sizes":[]},"premium_fe_rotate_delay":{"unit":"px","size":"","sizes":[]},"premium_fe_scale_switcher":"","premium_fe_Xscale":{"unit":"px","size":"","sizes":{"from":1,"to":1.2}},"premium_fe_Xscale_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Xscale_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_Yscale":{"unit":"px","size":"","sizes":{"from":1,"to":1.2}},"premium_fe_Yscale_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Yscale_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_scale_duration":{"unit":"px","size":1000,"sizes":[]},"premium_fe_scale_delay":{"unit":"px","size":"","sizes":[]},"premium_fe_skew_switcher":"","premium_fe_Xskew":{"unit":"deg","size":"","sizes":{"from":0,"to":20}},"premium_fe_Xskew_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Xskew_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_Yskew":{"unit":"deg","size":"","sizes":{"from":0,"to":20}},"premium_fe_Yskew_tablet":{"unit":"px","size":"","sizes":[]},"premium_fe_Yskew_mobile":{"unit":"px","size":"","sizes":[]},"premium_fe_skew_duration":{"unit":"px","size":1000,"sizes":[]},"premium_fe_skew_delay":{"unit":"px","size":"","sizes":[]},"premium_fe_opacity_switcher":"","premium_fe_bg_color_switcher":"","premium_fe_blur_switcher":"","premium_fe_contrast_switcher":"","premium_fe_gScale_switcher":"","premium_fe_hue_switcher":"","premium_fe_brightness_switcher":"","premium_fe_saturate_switcher":"","premium_fe_direction":"alternate","premium_fe_loop":"default","premium_fe_loop_number":3,"premium_fe_easing":"easeInOutSine","premium_fe_ease_step":5,"premium_fe_disable_safari":"","motion_fx_motion_fx_scrolling":"","motion_fx_translateY_effect":"","motion_fx_translateY_direction":"","motion_fx_translateY_speed":{"unit":"px","size":4,"sizes":[]},"motion_fx_translateY_affectedRange":{"unit":"%","size":"","sizes":{"start":0,"end":100}},"motion_fx_translateX_effect":"","motion_fx_translateX_direction":"","motion_fx_translateX_speed":{"unit":"px","size":4,"sizes":[]},"motion_fx_translateX_affectedRange":{"unit":"%","size":"","sizes":{"start":0,"end":100}},"motion_fx_opacity_effect":"","motion_fx_opacity_direction":"out-in","motion_fx_opacity_level":{"unit":"px","size":10,"sizes":[]},"motion_fx_opacity_range":{"unit":"%","size":"","sizes":{"start":20,"end":80}},"motion_fx_blur_effect":"","motion_fx_blur_direction":"out-in","motion_fx_blur_level":{"unit":"px","size":7,"sizes":[]},"motion_fx_blur_range":{"unit":"%","size":"","sizes":{"start":20,"end":80}},"motion_fx_rotateZ_effect":"","motion_fx_rotateZ_direction":"","motion_fx_rotateZ_speed":{"unit":"px","size":1,"sizes":[]},"motion_fx_rotateZ_affectedRange":{"unit":"%","size":"","sizes":{"start":0,"end":100}},"motion_fx_scale_effect":"","motion_fx_scale_direction":"out-in","motion_fx_scale_speed":{"unit":"px","size":4,"sizes":[]},"motion_fx_scale_range":{"unit":"%","size":"","sizes":{"start":20,"end":80}},"motion_fx_transform_origin_x":"center","motion_fx_transform_origin_y":"center","motion_fx_devices":["desktop","tablet","mobile"],"motion_fx_range":"","motion_fx_motion_fx_mouse":"","motion_fx_mouseTrack_effect":"","motion_fx_mouseTrack_direction":"","motion_fx_mouseTrack_speed":{"unit":"px","size":1,"sizes":[]},"motion_fx_tilt_effect":"","motion_fx_tilt_direction":"","motion_fx_tilt_speed":{"unit":"px","size":4,"sizes":[]},"sticky":"","sticky_on":["desktop","tablet","mobile"],"sticky_offset":0,"sticky_offset_tablet":"","sticky_offset_mobile":"","sticky_effects_offset":0,"sticky_effects_offset_tablet":"","sticky_effects_offset_mobile":"","sticky_parent":"","_animation":"","_animation_tablet":"","_animation_mobile":"","animation_duration":"","_animation_delay":"","_transform_rotate_popover":"","_transform_rotateZ_effect":{"unit":"px","size":"","sizes":[]},"_transform_rotateZ_effect_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateZ_effect_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_rotate_3d":"","_transform_rotateX_effect":{"unit":"px","size":"","sizes":[]},"_transform_rotateX_effect_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateX_effect_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_rotateY_effect":{"unit":"px","size":"","sizes":[]},"_transform_rotateY_effect_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateY_effect_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_perspective_effect":{"unit":"px","size":"","sizes":[]},"_transform_perspective_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_perspective_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_translate_popover":"","_transform_translateX_effect":{"unit":"px","size":"","sizes":[]},"_transform_translateX_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_translateX_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scale_popover":"","_transform_keep_proportions":"yes","_transform_scale_effect":{"unit":"px","size":"","sizes":[]},"_transform_scale_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scale_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect_mobile":{"unit":"px","size":"","sizes":[]},"_transform_skew_popover":"","_transform_skewX_effect":{"unit":"px","size":"","sizes":[]},"_transform_skewX_effect_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_skewX_effect_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_skewY_effect":{"unit":"px","size":"","sizes":[]},"_transform_skewY_effect_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_skewY_effect_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_flipX_effect":"","_transform_flipY_effect":"","_transform_rotate_popover_hover":"","_transform_rotateZ_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_rotateZ_effect_hover_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateZ_effect_hover_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_rotate_3d_hover":"","_transform_rotateX_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_rotateX_effect_hover_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateX_effect_hover_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_rotateY_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_rotateY_effect_hover_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_rotateY_effect_hover_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_perspective_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_perspective_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_perspective_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_translate_popover_hover":"","_transform_translateX_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_translateX_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_translateX_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_translateY_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scale_popover_hover":"","_transform_keep_proportions_hover":"yes","_transform_scale_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_scale_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scale_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scaleX_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect_hover_tablet":{"unit":"px","size":"","sizes":[]},"_transform_scaleY_effect_hover_mobile":{"unit":"px","size":"","sizes":[]},"_transform_skew_popover_hover":"","_transform_skewX_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_skewX_effect_hover_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_skewX_effect_hover_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_skewY_effect_hover":{"unit":"px","size":"","sizes":[]},"_transform_skewY_effect_hover_tablet":{"unit":"deg","size":"","sizes":[]},"_transform_skewY_effect_hover_mobile":{"unit":"deg","size":"","sizes":[]},"_transform_flipX_effect_hover":"","_transform_flipY_effect_hover":"","_transform_transition_hover":{"unit":"px","size":"","sizes":[]},"motion_fx_transform_x_anchor_point":"","motion_fx_transform_x_anchor_point_tablet":"","motion_fx_transform_x_anchor_point_mobile":"","motion_fx_transform_y_anchor_point":"","motion_fx_transform_y_anchor_point_tablet":"","motion_fx_transform_y_anchor_point_mobile":"","_background_background":"","_background_color":"","_background_color_stop":{"unit":"%","size":0,"sizes":[]},"_background_color_b":"#f2295b","_background_color_b_stop":{"unit":"%","size":100,"sizes":[]},"_background_gradient_type":"linear","_background_gradient_angle":{"unit":"deg","size":180,"sizes":[]},"_background_gradient_position":"center center","_background_image":{"url":"","id":"","size":""},"_background_image_tablet":{"url":"","id":"","size":""},"_background_image_mobile":{"url":"","id":"","size":""},"_background_position":"","_background_position_tablet":"","_background_position_mobile":"","_background_xpos":{"unit":"px","size":0,"sizes":[]},"_background_xpos_tablet":{"unit":"px","size":0,"sizes":[]},"_background_xpos_mobile":{"unit":"px","size":0,"sizes":[]},"_background_ypos":{"unit":"px","size":0,"sizes":[]},"_background_ypos_tablet":{"unit":"px","size":0,"sizes":[]},"_background_ypos_mobile":{"unit":"px","size":0,"sizes":[]},"_background_attachment":"","_background_repeat":"","_background_repeat_tablet":"","_background_repeat_mobile":"","_background_size":"","_background_size_tablet":"","_background_size_mobile":"","_background_bg_width":{"unit":"%","size":100,"sizes":[]},"_background_bg_width_tablet":{"unit":"px","size":"","sizes":[]},"_background_bg_width_mobile":{"unit":"px","size":"","sizes":[]},"_background_video_link":"","_background_video_start":"","_background_video_end":"","_background_play_once":"","_background_play_on_mobile":"","_background_privacy_mode":"","_background_video_fallback":{"url":"","id":"","size":""},"_background_slideshow_gallery":[],"_background_slideshow_loop":"yes","_background_slideshow_slide_duration":5000,"_background_slideshow_slide_transition":"fade","_background_slideshow_transition_duration":500,"_background_slideshow_background_size":"","_background_slideshow_background_size_tablet":"","_background_slideshow_background_size_mobile":"","_background_slideshow_background_position":"","_background_slideshow_background_position_tablet":"","_background_slideshow_background_position_mobile":"","_background_slideshow_lazyload":"","_background_slideshow_ken_burns":"","_background_slideshow_ken_burns_zoom_direction":"in","_background_hover_background":"","_background_hover_color":"","_background_hover_color_stop":{"unit":"%","size":0,"sizes":[]},"_background_hover_color_b":"#f2295b","_background_hover_color_b_stop":{"unit":"%","size":100,"sizes":[]},"_background_hover_gradient_type":"linear","_background_hover_gradient_angle":{"unit":"deg","size":180,"sizes":[]},"_background_hover_gradient_position":"center center","_background_hover_image":{"url":"","id":"","size":""},"_background_hover_image_tablet":{"url":"","id":"","size":""},"_background_hover_image_mobile":{"url":"","id":"","size":""},"_background_hover_position":"","_background_hover_position_tablet":"","_background_hover_position_mobile":"","_background_hover_xpos":{"unit":"px","size":0,"sizes":[]},"_background_hover_xpos_tablet":{"unit":"px","size":0,"sizes":[]},"_background_hover_xpos_mobile":{"unit":"px","size":0,"sizes":[]},"_background_hover_ypos":{"unit":"px","size":0,"sizes":[]},"_background_hover_ypos_tablet":{"unit":"px","size":0,"sizes":[]},"_background_hover_ypos_mobile":{"unit":"px","size":0,"sizes":[]},"_background_hover_attachment":"","_background_hover_repeat":"","_background_hover_repeat_tablet":"","_background_hover_repeat_mobile":"","_background_hover_size":"","_background_hover_size_tablet":"","_background_hover_size_mobile":"","_background_hover_bg_width":{"unit":"%","size":100,"sizes":[]},"_background_hover_bg_width_tablet":{"unit":"px","size":"","sizes":[]},"_background_hover_bg_width_mobile":{"unit":"px","size":"","sizes":[]},"_background_hover_video_link":"","_background_hover_video_start":"","_background_hover_video_end":"","_background_hover_play_once":"","_background_hover_play_on_mobile":"","_background_hover_privacy_mode":"","_background_hover_video_fallback":{"url":"","id":"","size":""},"_background_hover_slideshow_gallery":[],"_background_hover_slideshow_loop":"yes","_background_hover_slideshow_slide_duration":5000,"_background_hover_slideshow_slide_transition":"fade","_background_hover_slideshow_transition_duration":500,"_background_hover_slideshow_background_size":"","_background_hover_slideshow_background_size_tablet":"","_background_hover_slideshow_background_size_mobile":"","_background_hover_slideshow_background_position":"","_background_hover_slideshow_background_position_tablet":"","_background_hover_slideshow_background_position_mobile":"","_background_hover_slideshow_lazyload":"","_background_hover_slideshow_ken_burns":"","_background_hover_slideshow_ken_burns_zoom_direction":"in","_background_hover_transition":{"unit":"px","size":"","sizes":[]},"_border_border":"","_border_width":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_width_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_width_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_color":"","_border_radius":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_radius_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_radius_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_box_shadow_box_shadow_type":"","_box_shadow_box_shadow":{"horizontal":0,"vertical":0,"blur":10,"spread":0,"color":"rgba(0,0,0,0.5)"},"_box_shadow_box_shadow_position":" ","_border_hover_border":"","_border_hover_width":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_hover_width_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_hover_width_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_hover_color":"","_border_radius_hover":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_radius_hover_tablet":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_border_radius_hover_mobile":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"_box_shadow_hover_box_shadow_type":"","_box_shadow_hover_box_shadow":{"horizontal":0,"vertical":0,"blur":10,"spread":0,"color":"rgba(0,0,0,0.5)"},"_box_shadow_hover_box_shadow_position":" ","_border_hover_transition":{"unit":"px","size":"","sizes":[]},"_mask_switch":"","_mask_shape":"circle","_mask_image":{"url":"","id":"","size":""},"_mask_notice":"","_mask_size":"contain","_mask_size_tablet":"","_mask_size_mobile":"","_mask_size_scale":{"unit":"%","size":100,"sizes":[]},"_mask_size_scale_tablet":{"unit":"px","size":"","sizes":[]},"_mask_size_scale_mobile":{"unit":"px","size":"","sizes":[]},"_mask_position":"center center","_mask_position_tablet":"","_mask_position_mobile":"","_mask_position_x":{"unit":"%","size":0,"sizes":[]},"_mask_position_x_tablet":{"unit":"px","size":"","sizes":[]},"_mask_position_x_mobile":{"unit":"px","size":"","sizes":[]},"_mask_position_y":{"unit":"%","size":0,"sizes":[]},"_mask_position_y_tablet":{"unit":"px","size":"","sizes":[]},"_mask_position_y_mobile":{"unit":"px","size":"","sizes":[]},"_mask_repeat":"no-repeat","_mask_repeat_tablet":"","_mask_repeat_mobile":"","hide_desktop":"","hide_tablet":"","hide_mobile":"","_attributes":"","custom_css":"","tooltip_enable":"","tooltip_target":"element","tooltip_selector":"","tooltip_trigger":"mouseenter","tooltip_trigger_tablet":"click_target","tooltip_trigger_mobile":"click_target","tooltip__hide":"mouseleave","tooltip__hide_tablet":"click_any","tooltip__hide_mobile":"click_any","tooltip_position":"","tooltip_arrow_position_h":"","tooltip_arrow_position_v":"","tooltip_css_position":"","tooltip_disable":"","tooltip_delay_in":{"unit":"px","size":"","sizes":[]},"tooltip_delay_out":{"unit":"px","size":"","sizes":[]},"tooltip_duration":{"unit":"px","size":"","sizes":[]},"tooltip_width":{"unit":"px","size":"","sizes":[]},"tooltip_distance":{"unit":"px","size":"","sizes":[]},"tooltip_offset":{"unit":"px","size":0,"sizes":[]},"tooltip_arrow":"","tooltip_align":"","tooltip_padding":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"tooltip_border_radius":{"unit":"px","top":"","right":"","bottom":"","left":"","isLinked":true},"tooltip_zindex":"","tooltip_typography_typography":"","tooltip_typography_font_family":"","tooltip_typography_font_size":{"unit":"px","size":"","sizes":[]},"tooltip_typography_font_size_tablet":{"unit":"px","size":"","sizes":[]},"tooltip_typography_font_size_mobile":{"unit":"px","size":"","sizes":[]},"tooltip_typography_font_weight":"","tooltip_typography_text_transform":"","tooltip_typography_font_style":"","tooltip_typography_text_decoration":"","tooltip_typography_line_height":{"unit":"px","size":"","sizes":[]},"tooltip_typography_line_height_tablet":{"unit":"em","size":"","sizes":[]},"tooltip_typography_line_height_mobile":{"unit":"em","size":"","sizes":[]},"tooltip_typography_letter_spacing":{"unit":"px","size":"","sizes":[]},"tooltip_typography_letter_spacing_tablet":{"unit":"px","size":"","sizes":[]},"tooltip_typography_letter_spacing_mobile":{"unit":"px","size":"","sizes":[]},"tooltip_typography_word_spacing":{"unit":"px","size":"","sizes":[]},"tooltip_typography_word_spacing_tablet":{"unit":"em","size":"","sizes":[]},"tooltip_typography_word_spacing_mobile":{"unit":"em","size":"","sizes":[]},"tooltip_background_color":"","tooltip_color":"","tooltip_box_shadow_box_shadow_type":"","tooltip_box_shadow_box_shadow":{"horizontal":0,"vertical":0,"blur":10,"spread":0,"color":"rgba(0,0,0,0.5)"},"tooltip_box_shadow_box_shadow_position":" "},"defaultEditSettings":{"defaultEditRoute":"content"},"elements":[],"widgetType":"text-editor","htmlCache":"","editSettings":{"defaultEditRoute":"content","panel":{"activeTab":"content","activeSection":"section_editor"}}}]}

Annual validations (forms, questionnaires, external vulnerability scans, or third-party audits) to ensure the security controls are still in place.

The PCI DSS Bible

Everything to know about securing payments and cardholder data
PCI DSS eBook

Do you need to be PCI DSS compliant?

The big question is, who does PCI DSS apply to, and does your business need to comply with PCI requirements? Here’s the deal: PCI DSS compliance is required from any merchant or service provider that comes into contact with cardholder data, whether processing, transmitting, or storing. Although PCI DSS compliance is not mandated by law, it is still contractually required between credit brands and those handling cardholder data.

Types of organizations that must comply are:

PCI DSS compliance applies to all organizations that store, process, and/or transmit cardholder data. It covers technical and operational practices for system components included in or connected to environments with cardholder data. In summary, if you accept or process payment cards, PCI DSS compliance applies to you.

Do You Need to Be PCI DSS Compliant

PCI DSS applies to various organizations, from small businesses to larger enterprises, which is why the process of becoming compliant can’t be standardized across the board. The solve? Merchant levels. However, before we look at the different merchant levels and how they apply to your business, it’s important to establish just what exactly PCI DSS requires businesses to comply with.

That’s where the 12 PCI DSS requirements come into play.

Do You Need to Be PCI DSS Compliant

The 12 security requirements of
PCI DSS compliance

The PCI SSC developed and maintained twelve high-level requirements that guide PCI DSS compliance. These requirements are all critical security controls, and businesses are expected to implement them in order to protect credit card data. Implementing and maintaining the twelve requirements is also a prerequisite in order to get (and stay) compliant. The twelve requirements are then further broken into six control objectives, as seen in the table below: 

1. Develop and maintain a secure network to ban unauthorized access to cardholder data.

Install the relevant web filters or firewalls to protect cardholder data.​

Install the relevant web filters or firewalls to protect cardholder data.

Update and change all default security settings of configurations

Update and change all default security settings of configurations.

2. Protect CHD if stored locally or transmitted to a remote server or service provider.

Safeguard company servers or networks that come into contact with CHD.

Safeguard company servers or networks that come into contact with CHD.

Use encryption when transmitting CHD across public networks

Use encryption when transmitting CHD across public networks.

3. Create and maintain a vulnerability management program that includes security procedures, policies, internal controls, and penetration testing.

Install and manage up-to-date antivirus and malware software

Install and manage up-to-date antivirus and malware software.

Use secure protocols in all systems and applications

Use secure protocols in all systems and applications.

4. Implement strong access control measures on a need-to-know basis.

Restrict access to cardholder data by a need-to-know basis

Restrict access to cardholder data by a need-to-know basis.

Restrict access to cardholder data to authenticated users

Restrict access to cardholder data to authenticated users.

5. Continuously monitor and test physical and wireless networks to find and remediate vulnerabilities.

Limit physical access to cardholder data through physical hardware and devices

Limit physical access to cardholder data through physical hardware and devices.

Monitor all access to network resources and especially cardholder data

Monitor all access to network resources and especially cardholder data.

6. Maintain a strong information security policy and inform employees about their responsibilities to protect CHD.

Evaluate and test the effectiveness of existing security systems and processes

Evaluate and test the effectiveness of existing security systems and processes.

Maintain a policy that addresses information security

Maintain a policy that addresses information security.

Unfortunately, a brief overview of the 12 requirements barely scratches the surface when it comes to the practicality of implementing and maintaining them. So, for a deep dive into the 12 requirements, click here - PCI DSS requirements.

PCI DSS Compliance Levels

The entire process of getting PCI DSS compliant is determined by four overarching levels. Depending on the merchant level, the PCI DSS may require you to take a self-assessment questionnare (SAC) or an on-site audit (Report on Compliance).

Which level are you at?

Level  1

Level  1

Merchant Criteria:

You process more than 6,000,000 Visa transactions per year.

You’ve had a data breach or attack that resulted in an account data compromise.

You’re identified as level 1 by any card association.

Validation Requirements: 

An Annual Report on Compliance by a Qualified Security Assessor.

Quarterly network scan by an Approved Scanning Vendor (ASV).

An Attestation of Compliance Form.

Merchant Criteria:
  • You process more than 6,000,000 Visa transactions per year.
  • You’ve had a data breach or attack that resulted in an account data compromise.
  • You’re identified as level 1 by any card association.
Validation Requirements: 
  • An Annual Report on Compliance by a Qualified Security Assessor.
  • Quarterly network scan by an Approved Scanning Vendor (ASV).
  • An Attestation of Compliance Form.

Level 2

Level  2

Merchant Criteria: 

You’re within the threshold of 1 million – 6 million Visa or MasterCard transactions annually (all channels).

Validation Requirements for VISA and MasterCard: 

Annual Self-Assessment Questionnaire (SAQ). 

Quarterly network scan by an Approved Scanning Vendor (ASV). 

An Attestation of Compliance Form.

Merchant Criteria: 
  • You’re within the threshold of 1 million – 6 million Visa or MasterCard transactions annually (all channels).
Validation Requirements for VISA and MasterCard: 
  • Annual Self-Assessment Questionnaire (SAQ). 
  • Quarterly network scan by an Approved Scanning Vendor (ASV). 
  • An Attestation of Compliance Form.

Level 3

Level  3

Merchant Criteria: 

You process 20,000 to 1 million Visa or MasterCard e-commerce transactions annually

Validation Requirements for VISA and MasterCard: 

Annual Self-Assessment Questionnaire (SAQ). 

Quarterly network scan by an Approved Scanning Vendor (ASV). 

An Attestation of Compliance Form.

Merchant Criteria: 
  • You process 20,000 to 1 million Visa or MasterCard e-commerce transactions annually
Validation Requirements for VISA and MasterCard: 
  • Annual Self-Assessment Questionnaire (SAQ). 
  • Quarterly network scan by an Approved Scanning Vendor (ASV). 
  • An Attestation of Compliance Form.

Level 4

Level  4

Merchant Criteria: 

You process less than 20,000 Visa or MasterCard e-commerce transactions annually

All other merchants that process up to 1 million annual Visa or MasterCard transactions.

Validation Requirements for VISA and MasterCard: 

Annual Self-Assessment Questionnaire (“SAQ”). 

Quarterly network scan by an Approved Scanning Vendor (ASV). 

An Attestation of Compliance Form.

Merchant Criteria: 
  • You process less than 20,000 Visa or MasterCard e-commerce transactions annually
  • All other merchants that process up to 1 million annual Visa or MasterCard transactions.
Validation Requirements for VISA and MasterCard: 
  • Annual Self-Assessment Questionnaire (“SAQ”). 
  • Quarterly network scan by an Approved Scanning Vendor (ASV). 
  • An Attestation of Compliance Form.

Is PCI DSS compliance worth it?

Business is booming! That is if you’re a cybercriminal, of course. The importance of implementing robust security standards has never been more important, 48% of organizations rank targeted threats as their number one concern for 2023.

Enhanced safety and protecting your business and clients’ data against security breaches is crucial, but there are also many other benefits that come with getting (and staying) PCI DSS compliant. For starters, here are a few: 

The benefits of PCI DSS Compliance:

benefits of PCI DSS Compliance
benefits of PCI DSS Compliance

Customers are far more likely to do business with merchants they trust with securing payments. PCI DSS compliance is one of the highest security standards and proves, beyond doubt, that you’ve done due diligence regarding information security.

PCI DSS compliance creates a solid foundation and springboard toward a healthy security posture. This, in turn, streamlines the process of obtaining an additional framework that may share common security controls such as ISO 27001, SOC 2, HIPAA, or GDPR

A data breach not only blows your reputation but also gives the bank account an equally hard knock. PCI DSS, however, reduces your potential risk of expenses. Data breaches and cyber attacks can ultimately result in costly fees, penalties, and fines. This can include anything from forensic investigation costs, to card brand compromise fees. Not to mention the loss of customer loyalty and trust. Most organizations lose roughly 40% of customers after a breach - yikes!

Naturally, the next logical step is to get PCI DSS compliant. However, with all things compliance, it’s not a one-size-fits-all process. As mentioned before, the process of getting compliant highly depends on the merchant level your business classifies under. However, there are a few general things to keep in mind that will smooth over the nitty-gritty. 

How to become PCI DSS Compliant

Although the process of getting compliant varies depending on an organization’s merchant level and security posture, the overall process can still be categorized into three simple and fundamental steps. 

Step 1: Determine your scope

This includes identifying the components and systems that need to be inside the scope for PCI DSS and that can influence or impact your cardholder data. Thereafter, you’ll need to confirm your merchant-level compliance status.

Step 2: Assess your environment

This step requires merchants to analyze their security posture and risk environment to identify any areas of exposure or where they are not in line with the PCI DSS requirements.

Step 3: Mitigate and remediate

Prioritize any risk exposure and vulnerabilities and mitigate any potential areas for threat. Set a remediation plan into action to remove vulnerabilities and meet all PCI DSS standards.

Step 4: Report

The assessor and/or entity submits the appropriate documentation according to your merchant status.

If you're reaching annual audit time, be sure that you're clued up how to prepare for your audit to ensure compliance.

It’s not all sunshine and rainbows requirements

We hate to be the bearer of bad news, but if PCI DSS were a walk in the park, you wouldn’t be reading this right now. Like any other security framework, PCI DSS comes with its fair share of challenges and roadblocks. Fortunately, this means that your business isn’t the only one finding it hard to navigate compliance. Here are businesses’ most common challenges when implementing PCI DSS (and why they prefer tagging us into the ring).

PCI DSS is very technical

Understanding and implementing the technical requirements can require heavy lifting. The tech requirements dictate the kind of technology-based protections that should be in place and the structure and process for implementing them, which can be challenging without the right guidance and tech input. 

Improper segmentation and scope

It’s important to understand that PCI DSS applies to an organization’s cardholder data scope. That’s why it’s critical to map out the data environment and implement the necessary requirements within the segmented scope. This is often a challenging process. Without the correct separation between the cardholder data environment and the rest of the system, there could be a greater threat of unauthorized access to sensitive information. 

The cost of compliance

Without the right guidance, getting PCI DSS compliant can be time-consuming and resource-intensive. In addition, it often still requires outsourcing third parties to help with certain implementation processes. Even then, managing compliance requires considerable manpower, time, and budget. In the event of one small error, it’s back to square one. 

Fortunately, you don’t have to take on the burden by yourself. We’re ready when you are. 

I'm ready for the deep dive

You’ve dipped your toes in the PCI DSS pool; now let’s head on over to the deeper side of PCI DSS and get you up to speed with everything you need to understand the requirements better, confirm your merchant level, ace your audit and rest assured you’re 100% compliant - always. This whitepaper looks at the holy grail of securing payments and cardholder data and how PCI DSS ensures secure payments and data privacy.

The PCI DSS Bible: Everything to know about securing payments and cardholder data

PCI compliance in a click

Can we let you in on a secret? You actually don’t have to know everything about PCI DSS for you to leverage its most lucrative advantages while leveraging its security and staying compliant. Get compliant on auto-pilot and up to 90% faster.

We do the work, so you don’t have to worry about it!

Simplify your PCI DSS COMPLIANCE with everything you need to get PCI DSS compliant in one place and 90% faster.