Payment Card Industry Data Security Standard
The PCI DSS is a set of rules developed by the international payment systems Visa, MasterCard, American Express, Discover and JCB International (united in the PCI Security Standards Council) to ensure the security of payments with their payment cards.
Merchants who accept payments with such cards and service providers who support them must comply with PCI DSS regulations. The regulations cover best practices in IT security:
Compliance with the requirements of PCI DSS makes it considerably more difficult for attackers to obtain payment data. This ensures a secure payment system and maintains customer confidence.
By complying with PCI DSS, companies are also already implementing measures to facilitate compliance with further compliance requirements such as the requirements of the EU General Data Protection Regulation (GDPR) or the IT Security Act, banking supervisory requirements for IT (BAIT) or requirements from international standards such as ISO/IEC 27001.