PCI DSS

PCI DSS (Payment Card Industry Data Security Standard) is an information security standard mandated by the major credit card brands (Visa, Mastercard, Amex, Discover, JCB).

It applies to any organization that stores, processes, or transmits cardholder data. The standard consists of 12 core requirements designed to protect card data from theft and breaches. Use of tokenization and hosted checkout fields significantly reduces a merchant's PCI compliance burden.