Our business is PCI DSS Compliant.

What does that mean?

The Payment Card Industry Data Security Standard (PCI DSS)—which was developed by the PCI Security Standards Council (PCI SSC) created by Visa, MasterCard, American Express, Discover, and JCB—is an extensive set of technical and operational standards that a company needs to follow to ensure that all companies that process, store, or transmit credit card information maintain a secure environment.

What does it take for a company to become PCI DSS Compliant?

There are many stringent requirements, including but not limited to:

• Use and maintenance of firewalls, secure networks, and systems
• Proper password protections
• Protection of cardholder data
• Encryption of transmitted data
• Use and maintenance of anti-virus protection methods
• Keeping the software and systems up to date
• Restriction of data access and physical access
• Scanning and testing for vulnerabilities and fixing them promptly
• Documentation of corporate and technical policies related to information security

PCI DSS has six major objectives, 12 key requirements, 78 base requirements, and over 400 test procedures. Click here for more information.

Why should I shop only from PCI DSS Compliant websites?

When a business is PCI-compliant, it means that that the business reviews and follows the guidelines set forth by the credit card companies to help ensure your credit card information is protected and your personal information is secure.