The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organisations that handle branded credit/debit cards from the major card schemes.

The PCI Standard is mandated by the card brands but administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud.

Validation of compliance is performed at regular intervals either by an external Qualified Security Assessor (QSA) or by a firm specific Internal Security Assessor (ISA) that creates a report on compliance for organisations handling large volumes of transactions, or by Self-Assessment Questionnaire (SAQ) for companies handling smaller volumes.

Finding a QSA with experience of both service providers and merchants can be hard but this experience is essential to ensure they can not only give advice on your compliance but guidance on the options available to you and how they work in real life scenarios.

Ongoing ad-hoc support can be expensive but with our remote support service you pay for support in advance and spend as much time you need asking questions to your QSA when needed. The service is designed to support your ongoing projects when you need specialist advice.

We provide support from ad-hoc remote support and to end-to-end management of your PCI project, through to ROC (Report on Compliance).

Get in touch to discuss your requirements.