What is PCI compliance?
PCI compliance is a set of security standards designed by credit card companies to protect cardholder data during transactions. By following these guidelines from the PCI Security Standards Council, businesses can help prevent data breaches and avoid non-compliance fees.
PCI compliance made simple
Learn the basics of PCI compliance and understand what’s needed to keep records and meet industry standards.
Use and maintain firewalls
Keep your network safe by setting up a reliable firewall to block unwanted access.
Password protections
Use strong passwords and update them regularly to help protect against breaches.
Protect cardholder data
Encrypt and securely store sensitive customer data to keep their trust and confidence.
Keep anti-virus software updated
Make sure your anti-virus software is always current to guard against malware and online threats.
Limit access to sensitive data
Make sure your anti-virus software is always current to guard against malware and online threats.
Password protections
Use strong passwords and update them regularly to help protect against breaches.
AVS scans and your role in PCI compliance
Learn why regular ASV scans are essential for PCI compliance and how they help keep your business secure. From record-keeping to submitting certifications, these steps support a safe environment for both you
and your customers.
Set up a process to ensure ASV scans are completed and approved every 90 days. If you make changes to a scanned system within this period, run an extra scan to check for any new security issues. This simple routine keeps your business safe and reduces risks as your systems evolve.
As a merchant, you’re responsible for storing ASV compliance documents and completing your attestation. You’ll also need to submit scan details for ASV certification. Compliance helps protect your business and includes everything from policies and procedures to employee training. It’s a commitment you make to ensure a safe, compliant environment.
FAQs
- Can PaymentCollect complete my PCI compliance for me?
No, because the questionnaire contains sensitive information specific to your network setup, PaymentCollect can’t complete it for you. However, we’re here to help if you have any questions along the way.
- How often do I need to complete PCI compliance?
Merchants must complete a PCI compliance questionnaire every year. To stay compliant, you’ll also need to perform a network scan every 90 days. You should receive an email reminder 30 days before your PCI compliance expires.
- Who do I call for more information?
You should have received a phone number in your onboarding email. If you can’t find it, no worries—just give us a call! We’ll be happy to point you in the right direction.
- What happens if I'm not PCI compliant?
If you’re not PCI compliant, you’ll face higher monthly fees, and your customers’ data may be at risk. Staying compliant helps keep their information safe and saves you money.