The Payment Card Industry Security Standards Council (PCI SSC) was formed by

American Express American Express Company (Amex) is an American multinational corporation specialized in payment card services headquartered at 200 Vesey Street in the Battery Park City neighborhood of Lower Manhattan in New York City. The company was found ...

Discover Financial Services Discover Financial Services is an American financial services company that owns and operates Discover Bank, which offers Checking account, checking and savings accounts, personal loans, home equity loans, student loans and credit cards. It also o ...

JCB International , formerly Japan Credit Bureau, is a credit card company based in Tokyo, Japan. Its cards are accepted at JCB merchants, and has strategic alliances with Discover Network merchants in the United States, UnionPay merchants in China, American Ex ...

, MasterCard and

Visa Inc. Visa Inc. (; stylized as ''VISA'') is an American multinational financial services corporation headquartered in San Francisco, California. It facilitates electronic funds transfers throughout the world, most commonly through Visa-branded cred ...

on September 7, 2006, with the goal of managing the ongoing evolution of the

Payment Card Industry Data Security Standard The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard used to handle credit cards from major card brands. The standard is administered by the Payment Card Industry Security Standards Council and its use i ...

. The Payment Card Industry Data Security Standard (PCI DSS) consists of twelve significant requirements including multiple sub-requirements, which contain numerous directives against which businesses may measure their own payment card security policies, procedures and guidelines. To address rising cybersecurity risks to the payment ecosystem, the PCI SSC currently manages 15 standards for payment security, which are variously applicable to payment card issuers, merchants and service providers, vendors and solution providers, and acquirers and processors. More recently, the PCI SSC has collaborated wit
EMVCo
to provide the security requirements, testing procedures and assessor training to support the EMV 3-D Secure v2.0 standard.

Membership and participation

Members of the PCI Security Standards Council include an Executive Committee of six major payment brands:

, MasterCard,

, and

UnionPay UnionPay (), also known as China UnionPay () or by its abbreviation, CUP or UPI internationally, is a Chinese state-owned financial services corporation headquartered in Shanghai, China. It provides bank card services and a major card scheme ...

. The executives and management of the PCI SSC are supported by 30 companies comprising the Board of Advisors, and other stakeholder advisory groups such as assessor companies and regional boards. Interested parties can participate in the development of the PCI security standards through member registration as a Participating Organization. Currently, there are more than 700 Participating Organizations from more than 60 countries. These participants are organized into Special Interest Groups, which are tasked with recommending revisions to and the further development of the various security standards maintained by the PCI SSC.

References

{{authority control Payment cards Information privacy Standards organizations in the United States Organizations established in 2006 Computer security organizations