GLOSSARY
PCI DSS (Payment Card Industry Data Security Standard)
Security framework that sets technical and procedural requirements for handling cardholder data.
PCI DSS is a security standard for organizations that store, process, or transmit payment card data. It covers network segmentation, encryption, access controls, logging, and regular vulnerability testing.
Merchants typically validate compliance via Self-Assessment Questionnaires (SAQs) or external audits depending on volume and integration model. Using tokenization, reducing card data touchpoints, and enforcing least-privilege access lower scope and cost.
Related
Related terms.
-
Acquirer
Bank or payment institution that signs merchants and routes their card transactions into the card networks.
-
Apple Pay
Mobile wallet by Apple that tokenizes cards for contactless and in-app payments.
-
Card Fraud
Unauthorized card use or theft of credentials to initiate transactions.
-
Card Network
Payment network (e.g., Visa/Mastercard) that sets rules and routes card transactions between issuers and acquirers.