What is PCI DSS?
The public expects merchants, vendors and financial institutions to protect data on credit and debit payment cards in order to thwart theft and prevent unauthorised use.
As a means of ensuring that they do, the Payment Card Industry has put in place a Data Security Standard with which merchants need to comply. The standard sets out 12 basic security requirements, emphasising the need for encryption, access controls and firewalls. Penalties for non-compliance range from fines to increased auditing requirements or even losing the ability to process credit card transactions.
Every merchant storing, transmitting or processing card data is required to meet certain security standards. More information can be found on the Payment Card Industry Security Standards Council website.
How do I become PCI DSS compliant?
Every merchant storing, transmitting or processing card data is required to meet the Payment Card Industry Data Security Standard (PCI DSS).
There are four levels of PCI DSS compliance, and the level you require is dependent on two main factors:
1) Your transaction volume
2) How you process transaction information
1602media can guide you through the entire process and works very closely with Sagepay to ensure your business is PCI DSS compliant.
Which level is right for me?
Useful data sheet
