PCI DSS (Payment Security)
PCI DSS – Payment Card Industry Data Security Standard
In order to make a standard procedure possible when implementing security requirements, the credit card organisations VISA and Mastercard have developed a common standard: the Payment Industry Data Security Standard (PCI DSS).
These standards are binding for all outlets where credit cards are accepted – including your online shop. The companies involved in this process (the payment service provider and the merchant with a payment gateway) must ensure that their systems conform to high security standards, and must be certified by specially licensed institutions.
Information about the current security standard PCI DSS 3.2
Within the framework of periodic certification, compliance with the guidelines is checked, whereby the certification process for the individual merchant categories differs. The assignment of merchant category is based, amongst other things, on the number of transactions per month and the type of transaction (standard transaction, e-commerce or mail/phone order).
PCI certification is a data security measure safeguarding the processing of credit card payments on the internet, in the call centre or at the POS. The aim of these measures is to avoid the theft and misuse of credit card details.