Payment Card Industry Data Security Standard (PCI DSS)

Requirements

If you are not already complying with PCI DSS, you may need to change your processes, applications and security procedures. This section explains what all merchants involved in storing, processing or transmitting cardholder data must do.

More on the requirements

Step-by-step guide

What do you need to do to comply with PCI DSS? This step-by-step guide charts the path towards achieving full compliance with the industry standard.

See the step-by-step guide

Understanding merchant levels

Whether you conduct a few payment processes or millions of transactions every year, you will belong to a particular merchant level. This section determines your merchant level and how you can validate your compliance.

More on the merchant levels

Are you storing sensitive cardholder data?

At Barclaycard, we're responsible for reminding our merchants that they should not store certain sensitive cardholder data. This section explains what you can and can't store in your environment.

More on storing sensitive cardholder data

Once I become compliant, can I forget about it?

No, remaining complaint means renewing your compliance certificate annually. This section explains what you and your third-party partners need to do to renew.

More about renewing your compliance certificate

Latest news

Read related articles on PCI DSS.

• Computer Weekly
• Computing
• WhatPC?
• Times Online
• BBC
• Treasury Institute Blog

Barclaycard is not responsible for the content of external internet sites.