The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle credit card and debit card information. Defined by the Payment Card Industry Security Standards Council, the standard was created to increase controls around credit card data to reduce credit card fraud via its exposure. When a company wants to sell online and accept payments from Visa, MasterCard, American Express or Discover credit cards, the hosting company needs to be PCI compliant.
There are six categories of PCI standards that must be met in order for a merchant to be deemed compliant:
- Regularly Monitor and Test Networks
- Maintain an Information Security Policy