PCI Overview

What is PCI DSS?

PCI DSS is an information security standard for retailers, processors, and other organizations that handle credit, debit, prepaid, ATM and other payment cards. The standard is concerned with protecting sensitive cardholder information to reduce card fraud, and includes requirements for security management, policies, procedures, network architecture, software design, and other protective measures.

Does PCI DSS apply to me?

PCI DSS applies to any organization, large or small, that acquires, stores, processes or transmits cardholder data.

How does PCI compliance work?

Pointe Solutions, a Qualified Security Assessor, works with you to assess your current systems and bring you into compliance, if needed (read more about our process).

1. Assess. Based on your transaction volume, we would work with you to either (1) complete a self-assessment (small retailers); (2) perform a pre-assessment (processors and larger retailers); or (3) complete a formal assessment of PCI compliance (service providers and larger retailers).
2. Remediate. If the results show areas of non-compliance, we would work with you to develop a plan of remediation to bring your systems into compliance.
3. Certify. Following remediation, we would perform a formal PCI assessment to certify that your systems are in compliance.

What is a “Qualified Security Assessor”?

As a Qualified Security Assessor (QSA) company, Pointe Solutions has been qualified by the PCI Security Standards Council to assess compliance to the PCI DSS standard following a rigorous certification process that is repeated annually.

About PCI

• Why Pointe Solutions for PCI?
• Common Misconceptions That Can Cost You Money
• Pointe Solutions PCI Process
• PCI Vulnerability Scanning

PCI Resources

• PCI Security Standards Council
• PCI Resources for Merchants
• VISA Merchant Levels
• MasterCard Merchant Levels