E-Commerce - PCI Compliance
What is PCI DSS?
PCI DSS stands for Payment Card Industry Data Security Standard. PCI DSS is the global data security standard adopted by the payment card brands for all entities that process, store, or transmit cardholder data.
Who is required to be PCI Compliant?
All merchants, regardless of size, that accept payment cards are required to comply with PCI Data Security Standards.
Is pair Networks PCI Compliant?
Yes, all pair Networks' Web sites are PCI Compliant.
Where can I view the pair Networks' PCI compliance certificate?
The certificate is available here: http://www.pair.com/pair_Networks_PCI_Certificate.pdf
pair Networks is PCI Compliant. Does that mean my Web site hosted at pair Networks is automatically PCI Compliant?
No. Having your Web site hosted by pair Networks does not mean that your Web site is PCI Compliant. You will need to obtain PCI compliance for your individual Web site.
How do I become PCI Compliant?
Each payment card brand has its own program for compliance, validation levels, and enforcement. You should first start by reviewing the links below to determine what is required of you based on the card brands you accept.
- American Express: http://www.americanexpress.com/datasecurity
- Discover Financial Services: http://www.discovernetwork.com/fraudsecurity/disc.html
- MasterCard Worldwide: http://www.mastercard.com/sdp
- Visa Inc: http://www.visa.com/cisp
- Visa Europe: http://www.visaeurope.com/ais
You may also need to complete the Self-Assessment Questionnaire (SAQ), which is a validation tool for eligible organizations who self-assess their PCI DSS compliance and who are not required to submit a Report on Compliance (ROC).
Where can I learn more about PCI compliance?
For additional information, we recommend the PCI Security Standards Council Web site:
http://www.pcisecuritystandards.org/