PCI DSS compliance (or PCS DSS) has become quite complicated and demanding in 2017. You may have received a notification from your merchant account, your payment gateway, your hosting provider, your webmaster, or other party about. Today, we will review what it all means and the steps you need to take to stay in compliance and be legally protected. Understand that this post will focus on website compliance only and there is much more to it.
What is PCI compliance?
PCI DSS stands for Payment Card Industry Data Security Standard. It was established by the Payment Card Industry Security Standards Council. It is a set of specific procedures and policies meant to protect and safeguard your clients’ financial information (their credit card and billing information for instance) as well as your company or organization. Anyone accepting payments for products or services rendered has to adhere to these rules without exception.
The number of PCI compliance requirements has grown expediently in the past 24 months due to increased security concerns especially for websites selling online and accepting credit card payments. Hacking is at all time high and, in addition to website security measures, a company or organization accepting payments has to do more to protect its customers’ data. So you not only need to protect your website but also need to secure your clients’ data on and off line.
For additional details, we encourage you to visit the PCI compliance‘s official website.
What are the current requirements?
Below are the main requirements as noted by the Payment Card Industry Security Standards Council.
Check out SiteLock Products for PCI Compliance
What should you do next?
First check with your webmaster, your merchant account, and payment gateway (sometimes the gateway and merchant account are one and the same). Ask them if they handle the PCI compliance for your website and hold the responsibility.
There are also many websites now that can verify that you are in compliance. Simply search Google to find who does it and what the cost is. A good site is Qualys SSL Labs.
Never hesitate to contact our friendly team by phone at (707) 794-9999 (Pacific Standard Time) or by email here. Have a successful day!