PCI DSS

URI: https://gptkb.org/entity/PCI_DSS
GPTKB entity
Statements (99)
Predicate Object
gptkbp:instance_of gptkb:standard
gptkbp:aims_to build trust with customers
reduce credit card fraud
enhance security of payment transactions
gptkbp:applies_to organizations that accept credit cards
gptkbp:audit_frequency annual
gptkbp:audit_requirement on-site assessment
self-assessment questionnaire
gptkbp:audited_by gptkb:Qualified_Security_Assessors_(QSAs)
gptkbp:data_protection_requirement access control
encryption
tokenization
maintaining an information security policy
monitoring and testing networks
gptkbp:developed_by gptkb:PCI_Security_Standards_Council
gptkbp:enforcement_body gptkb:PCI_Security_Standards_Council
gptkbp:enforces banks
credit card companies
payment networks
by payment card brands
gptkbp:first_edition gptkb:2004
gptkbp:focus maintaining an information security policy
protecting cardholder data
building and maintaining a secure network
implementing strong access control measures
maintaining a vulnerability management program
regularly monitoring and testing networks
gptkbp:form gptkb:security
gptkbp:goal protect cardholder data
https://www.w3.org/2000/01/rdf-schema#label PCI DSS
gptkbp:includes gptkb:infrastructure
gptkb:security
policies
software design
procedures
gptkbp:is_adopted_by gptkb:merchants
gptkb:developers
gptkb:financial_institutions
service providers
payment processors
gptkbp:is_considered on-site assessment
report on compliance
self-assessment questionnaire
gptkbp:latest_version version 4.0
gptkbp:non_compliance_penalties fines
increased transaction fees
loss of ability to process credit card transactions
gptkbp:non_compliance_penalty fines
increased transaction fees
loss of ability to process credit card transactions
gptkbp:purpose to secure credit and debit card transactions
gptkbp:regulatory_compliance 12 requirements
gptkbp:related_to gptkb:vulnerability
data loss prevention
regulatory compliance
risk management
access management
application security
cloud security
data breaches
data security
disaster recovery planning
identity management
incident response
network security
physical security
security assessments
security audits
security policies
penetration testing
customer trust
business continuity planning
identity theft
cybersecurity best practices
vulnerability scanning
data breach prevention
third-party service providers
security controls
fraud prevention
e-commerce security
payment processing security
mobile payment security
point of sale security
gptkbp:requires firewall protection
access control measures
security policies and procedures
anti-virus software
encryption of cardholder data
monitoring and testing networks
gptkbp:training security awareness training
gptkbp:validation_requirement depends on transaction volume
gptkbp:bfsParent gptkb:Plaid
gptkb:Stripe
gptkb:Alibaba_Cloud
gptkb:Telecom_Italia_Data_Center
gptkb:Amazon
gptkb:Identity_and_Access_Management
gptkb:security
gptkbp:bfsLayer 4