Payment Card Industry (PCI) compliance is vastly underestimated—but maybe not as understated as the tangible and intangible costs of a data breach. Every merchant that accepts payment cards has a cardholder data environment that comes under the purview of the PCI DSS.
PCI DSS compliance includes a long list of requirements and is a significant responsibility for businesses of all sizes. The relentless drive to protect sensitive cardholder data is vital. Losses stemming from data theft are on the rise. Moreover, the threats are evolving as organized thieves use ever-more-sophisticated techniques to hack into more merchants' systems to steal sensitive data. All parties involved in processing card transactions have an obligation to continually improve their data security techniques.
The challenge for merchants is finding and implementing a solution or set of solutions that adequately protects sensitive cardholder data at rest and in motion that meets the requirements of PCI DSS and that doesn't slow or impair business processes or decrease profits.
To learn more about what you should be doing visit https://www.pcisecuritystandards.org/smb/