Get secure payment systems. Prevent breaches of cardholder data.
The Payment Card Industry Data Security Standard (PCI-DSS) was developed in 2006 to provide safety for cardholder data for the Payment Card Industry on a global basis. The PCI council consists of American Express®, Visa®, MasterCard®, Discover and JCB International Credit Card Co., Ltd. for the purpose of helping merchants and Financial Institutions understand – and implement – standards for creating secure payment systems, while preventing theft and breaches of cardholder data.
The PCI council sets the standards, then the credit card issuers enforce these standards across the merchant and financial industries. There are four levels of PCI compliance based on credit transactions over a 12-month period:
| Level | Transactions per year | Type |
|---|---|---|
| 1 | Over 6 million | Card transaction |
| 2 | 1 million to 6 million | Card transactions |
| 3 | 20,000 to 1 million | e-commerce |
| 4 | Less than 20,000 | e-commerce |
Level 1 annual requirements:
On-site review by an internal Auditor and network scan by an approved scanning vendor.
Level 2,3,4 annual requirements:
PCI-DSS Self-Assessment Questionnaire and quarterly network scans by an approved vendor. Zones PCI-DSS assessment GAP Analysis and Compliance Audit, combined with the services of a fully approved scanning vendor (ASV), will keep your organization up to date and prepared for possible data breaches.
