The PCI Data Security Standard (PCI DSS) is the payment card industry’s set of requirements on how companies must protect payment card information in their possession.

All companies that store, process, or transmit information from credit cards, debit cards, and some gift cards must comply with this standard. While most jurisdictions have not made PCI DSS compliance a legal obligation, banks and payment card industry partnership agreements force this compliance worldwide upon all merchants and their service providers.