Payment security
Visa has helped to develop a set of standards
to ensure that all organisations that store, transmit or process
card data attain and maintain a reasonable level of security.
Payment Card Industry Data Security Standard
In 2004 Visa and MasterCard created a set of industry-wide
requirements and processes –the Payment Card Industry Data Security
Standard (PCI DSS) – which are supported by all international
payment card systems.
In September 2006 the standards were handed over to an
independent industry organisation, the PCI Security Standards
Council, comprising representatives from all stakeholders in the
card industry – banks, service providers, vendors and merchants.
The council now owns the security standards and their
development.
The purpose of the PCI DSS is to ensure that valuable cardholder
account data is always secure. It is intended for any organisation
that stores, transmits or processes cardholder account and
transaction data. All these organisations must now comply with
these new standards as a minimum. This protects cardholders’ data,
and in turn minimises your own financial and reputation risks.
Visit the PCI Security
Standards Council website
More information
Visit our payment security section for more information on the
PCI DSS and compliance validation for merchants. There is also
advice on service providers, payments applications, PIN security
and important security and reporting dates.
Read more on payment security