Too Long; Didn't Read
Payment Card Industry Data Security Standard (PCI DSS) is a contractual obligation that is not dictated by law. It applies to any organization that handles payment card information. PCI DSS originates from all major credit card companies seeing the need to sort out the interoperability between their respective requirements. The requirements are general in the sense that they include aspects such as network security, physical security, vulnerability management, testing, and policies. At the same time, these aspects are placed in the context of securing credit card transactions.