Payment Card Industry (PCI) Resources
What is PCI Compliance? The PCI Security Standard is a global information security standard created to help businesses that process card payments prevent credit card fraud. All businesses which hold, process, or pass cardholder information from any card branded with the logo of one of the card brands are bound by these requirements, which can have serious implications for how stores operate and protect themselves from risk. Click on the video below to learn more about compliance and how best to protect your business.

Watch our video to learn more!

Articles and Education
Just starting out with PCI compliance? Click on the articles below to learn more.

• What Should I Do About PCI Compliance?: A introduction to compliance regulations.
• PCI Myths Debunked: Get the facts
• PCI Data Security Standard (PCI DSS): Set of comprehensive requirements for enhancing payment account data security.
• PCI Quick Reference Guide: Informs and educates merchants and other organizations that process store or transmit cardholder data.
• PCI Security Standards Council Publishes Best Practices for Skimming: New paper cites actionable recommendations aimed at preventing credit card skimming attacks.
• PCI SSC New Self-Assessment Questionnaire (SAQ) Summary: Validation tool intended to assist merchants and service providers in self-evaluating their compliance with the Payment Card Industry Data Security Standard (PCI DSS).
• PCI Knowledge Base: Research Community of merchants, banks, PCI Assessors, IT companies, security consultants.
• PCI Compliance Guide: Educational website focused on PCI compliance.
• PCI DSS Wireless Guidelines: Guidance for organizations on PCI DSS as applied to wireless environments, limiting the PCI DSS scope, and practical deployment methods for secure wireless in payment card transaction environments.
• Security Guardian: Tom Kellermann, vice president of security awareness at Core Security and former head of cyber-intelligence and policy management at the World Bank, talks PCI compliance.

Organizations That Can Help

• PCI Security Standards Council: Open global forum for the ongoing development, enhancement, storage, dissemination and implementation of security standards for account data protection.
• PCI Security Standards Council: An open global forum responsible for the development, management, education, and awareness of the PCI Security Standards, including: the Data Security Standard (DSS), Payment Application Data Security Standard (PA-DSS), and Pin-Entry Device (PED) Requirements.
• Society of Payment Security Professionals: Online community to share information and access education and certification opportunities for individuals and organizations involved in payment security.

PCI Compliance Workshops
Each year, NACS organizes workshops at NACStech specifically designed to assist retailers with current changes in regulations. Below are handouts from past NACStech sessions:

• Branded Stores and PCI Compliance: Who is Responsible?
• Introduction to PCI –DSS Compliance
• Overlooked PCI-DSS Compliance: People
• PCI-DSS Compliance: Hardware
• PCI Compliance: Ignorance is Not a Defense
• PCI Compliance 101
• Achieving Certified PCI Compliance
• Above and Beyond The PCI Compliance Standards