Blog

Payment Card Industry – Data Security Standards

Share this page

The Payment Card Industry - Data Security Standards (PCI–DSS) were introduced in 2006 by the Security Standards Council of the Payments Card Industry to combat fraudulent use of payment (credit and debit) card details. All merchants accepting card payments need to demonstrate ongoing compliance. The standards are worldwide and cover security of the transmission, storage and processing of customer’s payment card details. These include:

  • operational controls such as: restriction of authorised users, physical security of point-of-sale payment devices, secure retention and disposal of receipts, user education to prevent recording of card details;
  • IT security controls such as: firewall settings, network configurations and access controls.
Insight

Industry news and commentary from Uniac


Good Internal Audit

Following our recent commentary on internal audit in higher education, this briefing sets out our thoughts on what 'good'…


See more

Latest from the Uniac blog


Silla Maccario RIP

Silla has been our colleague since July 2004. Talented, individual, passionate, dedicated (and maybe sometimes a little bit…

Race Equality in Higher Education

The tragic murder of George Floyd has caused many to reflect on attitudes and actions towards minorities. In this paper, we…

COVID-19 Update

In March, we published our initial reaction to the changes forced upon the sector by the virus. Now that the situation has…


Need some more information?