Payment Card Industry (PCI)

Data Security Standard Compliance

Q: What is PCI?

A: The Payment Card Industry Data Security Standard (PCI DSS) is a set of requirements designed to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment. Essentially any merchant that has a Merchant ID (MID).

The Payment Card Industry Security Standards Council (PCI SSC) was launched on September 7, 2006 to manage the ongoing evolution of the Payment Card Industry (PCI) security standards with focus on improving payment account security throughout the transaction process. The PCI DSS is administered and managed by the PCI SSC (www.pcisecuritystandards.org), an independent body that was created by the major payment card brands (Visa, MasterCard, American Express, Discover and JCB).

Q: To whom does PCI apply?

A: PCI applies to ALL organizations or merchants, regardless of size or number of transactions, that accepts, transmits or stores any cardholder data. Said another way, if any customer of that organization ever pays the merchant directly using a credit card or debit card, then the PCI DSS requirements apply.

Q: Is Alliance PCI Compliant?

A: Alliance adheres to the standards outlined by the PCI DSS and has been deemed PCI compliant as a result of the submission, review and third party certification of the PCI SSC Assessment.

Q: Where can I find out more about PCI Compliance?

A: The PCI Security Council site (http://www.pcisecuritystandards.org/) can provide you with more information.