{"title":"PCI DSS compliance","category":"default","creationDate":1776961627,"content":"<p>The Payment Card Industry Data Security Standards (PCI DSS) is a set of global security standards created by the Payment Card Industry Security Standards Council (PCI SSC) to ensure that every company that collects, processes, stores, or transmits cardholder data maintains a secure cardholder data environment. PCI DSS applies to all entities that accept credit cards or are involved in payment processing, such as payment processors, acquirers, issuers, and service providers.<\/p>\n<p>Our <a href=\"\/pt\/development-resources\/pci-dss-compliance-guide\/\">PCI DSS compliance guide<\/a> provides information about the PCI DSS requirements you must comply with and what documentation you should provide to demonstrate compliance.<\/p>\n<p>Specifically for ecommerce, PCI DSS includes requirements related to the following topics which are also described in our PCI DSS compliance guide:<\/p>\n<ul>\n<li>\n<p><strong>Vulnerability scanning<\/strong>: if you are eligible to demonstrate your PCI DSS compliance through a Self-Assessment Questionnaire A (SAQ A), PCI DSS requires a quarterly vulnerability scan of part of your online-payments system in addition to the SAQ A.<\/p>\n<\/li>\n<li>\n<p><strong>Script security<\/strong>: if you are <em>not<\/em> eligible for a Self-Assessment Questionnaire A (SAQ A) and if certain conditions apply, PCI DSS requires that you implement measures to protect against risks associated with scripts and iframe elements loaded into Web online payments pages.<\/p>\n<\/li>\n<\/ul>\n<p>It is your responsibility to ensure you comply with all PCI DSS requirements that apply to your situation.<\/p>\n<h2>Next steps<\/h2>\n<div class=\"next-steps\" id=\"next-steps\" >\n<a href=\"\/development-resources\/pci-dss-compliance-guide\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><h6 class=\"next-steps__title\">PCI DSS compliance guide<\/h6><p>Learn what you need to do to comply with the latest PCI DSS requirements.<\/p><\/div><\/p><\/a><a href=\"\/development-resources\/pci-dss-compliance-guide\/vulnerability-scanning-regulation\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><h6 class=\"next-steps__title\">Vulnerability scanning for ecommerce<\/h6><p>Engage a scanning vendor as required under SAQ-A to identify potential vulnerabilities.<\/p><\/div><\/p><\/a><a href=\"\/development-resources\/pci-dss-compliance-guide\/script-security\" class=\"next-steps__step\" style=\"width:29%;\" target=\"_self\"><p class=\"next-steps__body\"><div style=\"text-align: center;\"><h6 class=\"next-steps__title\">Script security for ecommerce<\/h6><p>Implement script security on your ecommerce payment page to comply with the PCI DSS requirements.<\/p><\/div><\/p><\/a><\/div>\n","url":"https:\/\/docs.adyen.com\/pt\/online-payments\/pci-dss-compliance","articleFields":{"description":"Learn what you need to do to comply with PCI DSS v4.0.1.","feedback_component":true,"filters_component":false,"decision_tree":"[]"},"algolia":{"url":"https:\/\/docs.adyen.com\/pt\/online-payments\/pci-dss-compliance","title":"PCI DSS compliance","content":"The Payment Card Industry Data Security Standards (PCI DSS) is a set of global security standards created by the Payment Card Industry Security Standards Council (PCI SSC) to ensure that every company that collects, processes, stores, or transmits cardholder data maintains a secure cardholder data environment. PCI DSS applies to all entities that accept credit cards or are involved in payment processing, such as payment processors, acquirers, issuers, and service providers.\nOur PCI DSS compliance guide provides information about the PCI DSS requirements you must comply with and what documentation you should provide to demonstrate compliance.\nSpecifically for ecommerce, PCI DSS includes requirements related to the following topics which are also described in our PCI DSS compliance guide:\n\n\nVulnerability scanning: if you are eligible to demonstrate your PCI DSS compliance through a Self-Assessment Questionnaire A (SAQ A), PCI DSS requires a quarterly vulnerability scan of part of your online-payments system in addition to the SAQ A.\n\n\nScript security: if you are not eligible for a Self-Assessment Questionnaire A (SAQ A) and if certain conditions apply, PCI DSS requires that you implement measures to protect against risks associated with scripts and iframe elements loaded into Web online payments pages.\n\n\nIt is your responsibility to ensure you comply with all PCI DSS requirements that apply to your situation.\nNext steps\n\nPCI DSS compliance guideLearn what you need to do to comply with the latest PCI DSS requirements.Vulnerability scanning for ecommerceEngage a scanning vendor as required under SAQ-A to identify potential vulnerabilities.Script security for ecommerceImplement script security on your ecommerce payment page to comply with the PCI DSS requirements.\n","type":"page","locale":"pt","boost":18,"hierarchy":{"lvl0":"Home","lvl1":"Online payments","lvl2":"PCI DSS compliance"},"hierarchy_url":{"lvl0":"https:\/\/docs.adyen.com\/pt","lvl1":"https:\/\/docs.adyen.com\/pt\/online-payments","lvl2":"\/pt\/online-payments\/pci-dss-compliance"},"levels":3,"category":"Online Payments","category_color":"green","tags":["compliance"]}}