Payment Card Industry

Data Security Standard

Reassure customers and your supply chain that you take fraud seriously

Contact us
Image of a credit card being presented for payment
a small transparent pixel

PCI DSS - Payment Card Industry Data Security Standard

PCI DSS Logo

The Data Information Security Standard was developed to protect Organisations and Customers when managing payments. While this is not a legal requirement all of the major debit and credit card companies have mandated this before with will work with any organisations.

It is a set of 12 technical and operational requirements covering the full payment cycle. The standard covers 2 key areas;

Cardholder Data Environment (CDE):

  • People
  • Processes
  • Technologies

Used to store, process, transmit cardholder data and sensitive authentication data.

System Components:

  • Systems that provide security services (e.g.; authentication servers, firewalls, and web redirect servers)
  • Network components including; firewalls, switches, routers, wireless access points, and network appliances.
  • Server functions including web, application, database, mail, Network Time Protocol (NTP), and Domain Name System (DNS).
  • Applications including all purchased and custom applications, including internal and external (for example, Internet) applications.

This is relevant for any organisation that is involved in or plans to be involved in payment card processing; including merchants, processors, acquirers, issuers, and service providers.

Other benefits;

  • Builds trust with your customers. Trust is foundational to successful e-commerce.
  • Reduces risk of data breaches.
  • Puts security first.
  • Provides a baseline for other regulations.

We’re here to help guide you through the world of information security in a digital era. Trust Net-Defence to help you protect your organisation.

ISO Certification

ISO Standards open doors to new customers and strengthen your business.

IASME Governance

An alternative to ISO 27001 for smaller organisations

Managed Service Provider (MSP)

Managing your technology, enabling your business to operate efficiently and securely.

Telephony

Making communication simple and reliable.