Organizations that process, transmit, and/or store cardholder data or SAD (sensitive authentication data), or can affect their security, must comply with the PCI DSS (Payment Card Industry Data Security Standard). This is an international information security standard designed to: Currently, the Standard is at v4.0.1. You can learn more about the changes introduced by PCI DSS version 4 here. Merchants and service providers must also annually validate their PCI DSS compliance, via either: To determine which you must do, contact either: The more transactions you process, the more likely you need to be audited by a qualified external auditor
First seen on itgovernanceusa.com
Jump to article: www.itgovernanceusa.com/blog/7-simple-steps-to-pci-dss-audit-success
