Menu
Back to homepage

PAYMENT GATEWAY

Back to homepage

PCI Standard

Payment Card Industry Data Security Standard is an information security standard for organizations that handle branded credit cards from the major card schemes. The standard was created to increase controls around Cardholder data and reduce card fraud. 

Merchants that want to process, store or transmit card data will need to be PCI compliant. With SIBS the Merchants have the choice to use the FORM that is already fully PCI compliant, with no need of any certification from the store. The “Server-to-Server” API integration variant requires the Merchant to collect the card data, which increases the PCI-compliance needs. 

Notification

The Council does not enforce compliance. Compliance is requested by individual payment brands or acquiring banks.

PCI 3-Step Process

  • Assess
    Identifying cardholder data, taking an inventory of IT assets and business processes for payment card processing, and analysing them for vulnerabilities;

  • Remediate
    Fixing vulnerabilities and eliminating the storage of Cardholder data unless necessary; 

  • Report
    Compiling and submitting required reports to the appropriate acquiring bank and card brands. 

On this page:

Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

Strictly Necessary Cookies

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

If you disable this cookie, we will not be able to save your preferences. This means that every time you visit this website you will need to enable or disable cookies again.