RCSC logo
Credit card processing terminal and credit card
 

 

Payment Card Industry Standards Materials

 

What is PCI-DSS?

Payment Card Industry Data Security Standards (PCI-DSS) are a set of standards developed by the payment card industry (American Express, Visa, MasterCard, Discover, JCB) to protect cardholder data from being stolen and used for fraudulent purchases or identity theft. All merchants who accept credit cards are required to comply with PCI-DSS.

Visit the PCI Security Standards PCI-DSS Web page for more information and to learn what you should do to be in compliance.

 

  • PCI-DSS Self Assessment Questionnaires (SAQ)

    • SAQ A - Card-not-present (e-commerce or mail/telephone-order) merchants, all cardholder data functions outsourced. This would never apply to face-to-face merchants.

    • SAQ B - Imprint-only and stand-alone terminal merchants with no electronic cardholder data storage.

    • SAQ C - Merchants with POS systems connected to the Internet, no electronic cardholder data storage.

    • SAQ D - All other merchants (not included in Types 1-4 above) and all service providers defined by a payment brand as eligible to complete an SAQ.

  • PCI-DSS Prioritized Approach - Provides guidance that will help merchants identify how to reduce risk to card holder data as early on as possible in their compliance journey.

Source: PCI Security Standards Council website

 

Have a question? RCSC representatives are available to assist you. Email us at RCSC@retailcouncilnys.com.

 

 

  
     
RCSC (800) 442-3589   |  Site Map  |  2012 Retail Council Services Corp.   All rights reserved