The Payment Card Industry Data Security Standard (PCI DSS) continuously updates security measures to keep merchants and their customers safe from fraud. The overall purpose of the compliance program is to build a safety net for consumers to make sure they are protected against bad actors. It also streamlines merchants’ card payment operations. Since security measures change with the never-ending fraud threat, merchants need to stay on top of compliance continuously to keep fraudsters at bay.
The latest version, PCI Compliance 4.0, gives merchants roughly a year to adhere to the new or updated requirements since version 3.2.1 was retired in March 2024. These regulations provide a framework for businesses to follow to safeguard sensitive cardholder data, and ensure the efficient, error-free handling of card payment transactions. PCI 4.0 will help protect both customers and merchants from online thieves, hackers, and fraudsters, as well as benefit a business’s finances and its reputation, too.
The latest batch of PCI compliance covers most of the same ground as prior versions' requirements, with special attention paid to common areas of security like risk mitigation and access control. The last round of updates was driven by industry feedback and this version furthers the protection of payment data with new controls to address sophisticated cyber attacks.
Please select this link to read the complete article from OSAP member i3 Merchant Commerce.