12 requirements
Organised under six goals, from secure networks to access control and monitoring.
Protecting cardholder data, end to end.
PCI DSS is the security standard for organisations that store, process or transmit payment-card data. Version 4.0.1 modernises requirements with more flexibility (the customised approach) and a stronger focus on continuous security rather than annual point-in-time checks.
The standard
PCI DSS v4.0.1 — Payment Card Industry Data Security Standard
Who needs it
Merchants and service providers of every size that handle cardholder data — with validation scope tied to transaction volume and the way you process payments.
12
Requirements tracked
Organised under six goals, from secure networks to access control and monitoring.
v4.0 lets you meet an objective with alternative controls, evidenced accordingly.
Many requirements are now business-as-usual activities, not annual events.
Segmentation and tokenisation shrink the cardholder-data environment you must secure.
See exactly how Compliance One maps PCI DSS to your environment in a 30-minute walkthrough.