As a response to increased theft of credit card information, the different card brands (MasterCard, Visa, American Express and others) developed a minimum set of requirements for their merchants to follow.
To assist organisations in meeting those requirements, the Payment Card Industry Security Standards Council (PCI SSC) was formed to manage and administer the Payment Card Industry Data Security Standard (PCI DSS) and the supporting standards.
PCI DSS consists of 6 goals spanning twelve major requirements. These requirements apply to every organisation that accepts, processes, stores or transmits credit card information.
The exact requirements for reporting and validation are set by each of the card brands.
Shearwater’s PCI Compliance Solutions
Shearwater can assist in all aspects of compliance. We can perform annual validation audits
as required under the standard. We can also assist you in the meeting the requirements of PCI DSS
by working with you to assess gaps, develop remediation strategies, and to provide products and
services that meet the standard. Shearwater offers a range of consulting and auditing services
for becoming compliant and maintaining compliance with PCI.
Calibrated QSA Advice
Engaging Shearwater for PCI DSS compliance gives you access to calibrated
expert advice that ensures that you neither over, nor under-invest in your PCI
compliance efforts as advice is run by multiple Qualified Security Assessors
with different areas of expertise.