About PCI DSS compliance

What is it?

PCI DSS stands for Payment Card Industry Data Security Standard.

PCI DSS are industry wide regulations that apply to all businesses taking card payment, whether it's in person, over the phone or online. They ensure safe handling of card payment data and help reduce card data theft. 

These standards are overseen by the PCI Security Standards Council, and required by all of all major card types, including Visa, Mastercard and American Express.

For more information visit:

www.theukcardsassociation.org.uk

www.pcisecuritystandards.org

 

Why do I need to comply with PCI DSS?

When you accept a card payment, you and your customer are sharing sensitive, financial information.

All Paymentsense customers need to demonstrate compliance with PCI standards. This allows you to formally demonstrate that you are handling and managing customer data as securely as possible. In the event of a card security breach, it will help you prove you’re doing everything you can to prevent the fraudulent use of information. 

All new Paymentsense customers have two months to become compliant with PCI standards. After this time, you will be charged PCI non-compliance fees.

For more information visit What happens if my business is not PCI compliant?

 

What do I need to do?

1. Complete PCI compliance assessment via our PCI Portal every 12 months and, if necessary, a scan of your systems every 3 months.

2. Pay monthly PCI management fee (£4.95 or €4.95) which is included in your quarterly Paymentsense invoice.  It helps us to manage compliance on your account and membership to the PCI programme.

3. If you don’t need it, don’t store it - don’t hold onto customer data you don’t need. 

For more information refer to How to become compliant with PCI DSS standards?

Have more questions? Submit a request

Comments

Contact Customer Services

Please Email customerservice@paymentsense.com

Powered by Zendesk