We use cookies to give you the best browsing experience and to help us understand how you use our site. Cookies are small snippets of data stored on your computer and some have already been set. By continuing to use our website you are accepting our use of cookies. To find out more, read about cookies

Please note

We cannot answer specific queries about your account here. For Account queries please

Your selected question

Once I become PCIS DSS compliant, can I forget about it?

Unfortunately not; the security of card holder data is a continuous process and should be normal practice for the merchant.

PCI DSS is a bit like an MOT or an insurance policy; the compliance certificate must be renewed every year, which involves either completing an annual on-site security audit or Self Assessment Questionnaire (SAQ) and where applicable, running (and passing) quarterly network scans. Please don't forget that third parties are required to be PCI DSS compliant also.

If the payment processing environment or payment processes change the compliance requirements should immediately be reviewed. This includes any third parties that are part of the payment processing environment.

How useful did you find the answer given?

Not at all Very useful