PCI DSS (Payment Card Industry Data Security Standard)

Security framework that sets technical and procedural requirements for handling cardholder data.

August 12, 2025

PCI DSS is a security standard for organizations that store, process, or transmit payment card data. It covers network segmentation, encryption, access controls, logging, and regular vulnerability testing.

Merchants typically validate compliance via Self-Assessment Questionnaires (SAQs) or external audits depending on volume and integration model. Using tokenization, reducing card data touchpoints, and enforcing least-privilege access lower scope and cost.

#A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Related terms

Keep learning with these nearby definitions.

Acquirer

Bank or payment institution that signs merchants and routes their card transactions into the card networks.

Apple Pay

Mobile wallet by Apple that tokenizes cards for contactless and in-app payments.

Card Fraud

Unauthorized card use or theft of credentials to initiate transactions.

Card Network

Payment network (e.g., Visa/Mastercard) that sets rules and routes card transactions between issuers and acquirers.

PCI DSS (Payment Card Industry Data Security Standard)