Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » PCI DSS Standards

PCI DSS Standards

The PCI Data Security Standard (PCI DSS) safeguards cardholder data and sensitive authentication information when processed, stored, or transmitted. The PCI DSS universe is built of 3 important components. They are:

PCI Data Security Standard (PCI DSS)

This component applies to any company that deals with cardholder data, whether it’s storing, processing, or transmitting it. It covers the technical and operational aspects of systems connecting to cardholder data. If your business handles payment cards in any way, you must comply with PCI DSS to ensure data security.

Payment Application Data Security Standard (PA-DSS)

PA-DSS is mainly for software developers and integrators who create applications that are about cardholder data. It also covers applications you sell, distribute, or license to third parties.

PIN Entry Device Security Requirements (PCI PED) 

PCI PED is mainly for manufacturers who create and manage personal identification number (PIN) entry terminals used in financial transactions. PCI PED specifies these devices’ security requirements and ensures you securely handle PINs.

Additional reading

build compliance strategy

How to Build a Compliance Strategy in 6 Steps

In Dec 2023, the French authorities slapped a fine of €32 million on Amazon France Logistique for violating multiple GDPR clauses. This isn’t the first time Amazon paid their way out of legal hot water.  While giants like Amazon can afford to continue operations even after violations, small to medium businesses may not recover at…
operational risk management software

Best Operational Risk Management Software: Compare Top 10

During the 2008 economic crisis, financial giant Lehman Brothers declared bankruptcy, fired thousands of employees, and sent the already broken economy into a tailspin. While many complex factors led to this event, poor risk management was the key one. This event highlights the importance of using operational risk management software. Operating a business without a…
PCI DSS certification

PCI DSS Certification: The ABCs of Getting Compliant

When Spanish airline Air Europa suffered a data breach recently and became the reason for its customers canceling their credit cards because fraudsters were accessing their financial data, the repercussions were felt far and wide. Travelers chose to vent publicly on social media and voted quickly with their laptops by resolving never to fly with…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.