PCI (Payment Card Industry) Compliance is a standard dictating credit card data security. Compliance with this standard is a prerequisite for handling credit card, debit card, gift card, and prepaid card transactions over the internet.
Components of PCI Compliance
- Payment Processing: The payment processing company you use will handle this component.
- SSL Certificates: All credit card information must be transmitted over the internet using SSL / Secure Certificates.
- Shopping Cart: Neccessities include: complex and unique passwords, all default passwords changed, adequate internal credit card security, basic security must be up to date, transaction logging, and that no secure card information transmitted via email.
- Company Policies: Secure customer data must be accessed only by authorized personnel; lax security is a breach of PCI Compliance.
