Bexs Bexs
  • Bexs Pay
    • All Solutions
    • Payin

      Local Payment Processing in Brazil

    • Payout

      Cross-border payouts to Brazil with Pix

    • FX API

      FX platform for Marketplaces and PSPs

    • Integration types

      Direct API, Embedded Checkout and Payment Link

  • Bexs FX
    FX Services
  • About us
  • Careers
  • Blog
  • Versão em Inglês English
    Versão em Português Português
Home >  international • Payments   PCI or PCI DSS Compliance: What It Is, Its Requirements and Benefits

Home » Blog » PCI or PCI DSS Compliance: What It Is, Its Requirements and Benefits

PCI or PCI DSS Compliance: What It Is, Its Requirements and Benefits

28/10/2021

Discover what PCI Compliance/DSS is and why is it important for e-commerce.

 

pci compliance

 

PCI Compliance, PCI DSS or Payment Card Industry Data Security Standard is a group of security requirements and procedures aimed at protecting the cardholder data that is required to process with each payments made using a card. The purpose of adopting PCI DSS is to rule out the possibility of fraud or data theft. In other words: adopting a PCI DSS compliant payment solution means providing a secure consumer shopping experience.

 

PCI Compliance or PCI DSS Data Security Standard: Learn how it works

 

PCI DSS or “Payment Card Industry Data Security Standard” is an international security certification that applies to the entire payment processing chain when processing a card payment: merchants, processors, acquirers, issuers and service providers. That is, entities that store, process or transmit cardholder data (CHD) and/or confidential authentication data (SAD)”.

 

Created in 2004 jointly by the brands MasterCard, American Express, Visa, Discover and JCB International, the PCI DSS is regulated by the Payment Card Industry Security Standards Council, constituted by the same group and guided by an open global forum. The Council’s role is to improve data security by guiding best practices and helping to implement them to establish a minimum-security standard.

 

PCI Compliance: End-to-End Data Protection

 

The issuing bank and the acquirer of the cards share responsibility for complying with these guidelines and for punishing those responsible for cases of data leakage. Merchants, in turn, need to ensure that their systems and processes keep consumer data secure (such as cardholder name, card number, security code and expiration date), regardless of the size of the business or the volume of operations. Making sure card data is safe is also a responsibility of the merchant that accepts card payments. Choosing a suitable PCI DSS payment processor or payment gateway is the best way to achieve this goal.

 

PCI DSS: requirements that ensure data security

 

PCI certificate comprises the minimum requirements to ensure information security. This set of best practices can be improved to further decrease the chances of leakage or even to comply with local laws or regulations specific to a trade sector.

 

PCI Compliance: meet the 12 requirements and PCI levels

 

The list of requirements to obtain a PCI certification comprises 12 items, which can be grouped into six major objectives:

 

  1. Build and maintain security of a network of systems: use up-to-date firewall and create strong passwords to protect the system and other security parameters;

 

  1. Protect cardholder data: preserve cardholder data (such as name, address, telephone and email) and use encryption when transmitting them over open and public networks;

 

  1. Maintain a vulnerability management program: use and update antivirus, antispyware and antimalware systems, and develop and maintain systems and applications safe from hackers;

 

  1. Implement strict access control measures: internally, assign permission to access card data as needed, restricting as much as possible the number of people who come in contact with them, whether physically or digitally. Also ensure that access to system components is always authenticated and identified;

 

  1. Monitor and test networks regularly: periodically test security systems and processes, in addition to monitoring all access to network resources and cardholder data;

 

  1. Maintain an information security policy: define and ensure the effectiveness of a security policy valid for all teams.

 

PCI DSS certification has 4 different levels, related to the number of transactions processed annually:

 

Level 1: processes more than 6 million transactions per year. (This includes an annual auditing and certification process).

 

Level 2: processes between 1 and 6 million transactions annually.

 

Tier 3: Annual processing of 20,000 to 1 million online transactions or less than 1 million transactions in total over a year.

 

Level 4: processes less than 20,000 online transactions or up to 1 million transactions in total in a year.

 

From Level 2 to Level 4, merchants are required to complete an annual self-assessment questionnaire, undergo a quarterly network check, and obtain an attestation of compliance for on-site assessments. Companies with a Level 1 certificate do not need to do the self-assessment, but are audited every year by a qualified security advisor or by an internal auditor with the consent of the company director.

 

For Payment Providers (PSPs), there are two levels:

 

Level 1: over 300,000 transactions per year;

Level 2: below 300,000 transactions per year.

 

Assessment requirements include a quarterly network scan, an audited compliance certificate and an annual compliance report, in the case of a vpn, for level 1 PSPs. Bexs Banco’s is PCI Level 1 certified.

 

The benefits of PCI Compliance for your company

 

In addition to being mandatory for everyone who participates in card data processing, to choose partners that meet PCI DSS security requirements also goes in favor of the reputation your company will build online. We are talking about e-commerce platforms, servers and the aforementioned payment processors and the online payment gateway. See below what your company gains when working in partnership with companies with PCI Compliance:

 

– Legal liability: if there is a data leak or other type of cybercrime, the payment process will be investigated for weak points. Situations like this can trigger legal actions and a lot of headaches.

 

– Fraud protection: when a fraud occurs, your establishment loses twice: when sending the product to the sender who appropriated third-party card data and when refunding the amount paid to the injured consumer (who will probably request the cancellation of the purchase together card provider), a procedure known as chargeback.

 

– Consumer trust: increasingly educated, digital consumers are always looking to be aware of the reputation of the e-commerce with which they share their data. You don’t want your brand to be involved in security breaches, do you?

 

Bexs Pay: international payment solutions with PCI DSS Level 1

 

Using a PSP solution developed by Bexs within the PCI DSS guidelines, you will be guaranteeing your consumer the safest payment process on the market. Our APIs are built to the highest security standards in the payments industry. With them, your company can also accept international online payments, with amounts automatically converted to the consumer’s local currency, and receive in your preferred currency, wherever you are. Contact us!

Last News

Read more

Payment gateway vs psp: 3 reasons to choose a PSP

17/06/2022

Are you split between a Payment Service Provider or payment gateway for your online business? Here are 3 characteristics making […]

Read more

Live commerce: one of the most recent e-commerce trends in Brazil

28/04/2022

Find out what live commerce is, how it can boost your local or cross-border e-commerce business and what you need […]

Read more

Contactless payments: how they work

14/04/2022

While NFC contactless payments have been widely adopted by physical retailers, QR Code payments are a local and cross-border e-commerce […]

Read more

Brazilian e-commerce performance in 2021

01/04/2022

Cross-border expansion, online mobile sales, the most successful categories and more: check out the insights and numbers for Brazilian e-commerce. […]

Read more

Chargebacks: what they are and how to avoid payment reversals

29/03/2022

Learn about chargebacks, how they can impact your e-commerce business and how to minimize payment reversals.     The overall […]

Read more

Online payment fraud: the most common types of fraud and how to avoid them

23/02/2022

Find out how to increase data security using antifraud solutions for online payments.     Trust is a critical factor […]

Read more

Brazil’s Open Banking and the impact on payments

16/02/2022

Discover new online payment options and check out the data on Brazil’s Open Banking     The last of Brazil’s […]

Read more

Buy now pay later: solution to buy online in installments

16/12/2021

Credit in purchases, which have been very popular in Brazil for quite a while, are also a recent trend in […]

Read more

Foreign exchange regulation: a new regulatory framework in Brazil

25/11/2021

Check out the latest news about the new foreign exchange regulation and understand how access to international transfers has become […]

Read more

Payment Service Provider or PSP: what to consider when choosing one

12/11/2021

Find out what a payment service provider can do for your business and what to consider when choosing a solution […]

Read more

Social commerce: how to sell on social media

23/09/2021

Find out what social commerce is and how this channel can help your business grow.     After social isolation […]

Read more

Black Friday in Brazil: how to prepare yourself to sell more on this date

03/09/2021

Check out some data from the last Black Friday in Brazil and insights to boost sales for this market.   […]

Read more

Payment link: the advantages of this feature

20/08/2021

Check out some reasons to adopt payment links when billing products or services     The e-commerce market is the […]

Read more

Payment API: what it is and how it works

05/08/2021

A payment API facilitates your company’s routine and benefits customers with a wide range of payment methods. Know more!   […]

Read more

WhatsApp Pay: new payment method arrives in Brazil

22/07/2021

See how the money transfer through message application works and WhatsApp Pay impact on Brazilian payments.     Since May […]

Read more

Digital Real: the Brazilian digital currency is coming

08/07/2021

Check out what is already known about Digital Real and the possible impacts of digital currency in Brazil   Digital […]

Read more

Online shopping: what’s in Brazilians’ cart

24/06/2021

Find out which niches are most sought after by Brazilians in online shopping and which are the most sold products […]

Read more

Recurring or installment payment?

10/06/2021

Find out the difference between recurring and installment payments and which of these payment methods is right for your business. […]

Read more

Cart abandonment: 4 ways to avoid it

27/05/2021

Do your e-commerce customers back out when it’s time to pay? Understand how to get around that behavior.     […]

Read more

The evolution of Cross-Border and international tracking

21/05/2021

The cross-border e-commerce expansion also involves reducing delivery times. Learn how important it is to track your purchases to avoid […]

Read more

Pix for business: 3 reasons to accept this form of payment

14/05/2021

Find out how receiving money through Pix can be beneficial for your business

Read more

The Open Banking revolution in Brazil

05/04/2021

A summary about the news and the possibilities of transformation of the Brazilian Financial System.

Read more

The Chinese new year and the Brazil and China relationship

11/02/2021

Welcome to the Chinese new year 4719, ruled by ox and the metal element. Understand more about this date and […]

Read more

Beyond companies: shopping from China increases among individuals

02/02/2021

Even with the pandemic and the exchange rate fluctuation, online shopping from China is a growing trend that will continue […]

Read more

Payment Gateway or PSP: the differences between these technologies

01/02/2021

We explain payment gateways and payment providers (PSPs) to help you choose the best e-commerce option.       Payment […]

Read more

Reasons to invest in Latin America in 2021

11/01/2021

Record digitization and a thriving innovation ecosystem. Understand the reasons for placing the region, and especially Brazil, in your expansion […]

Read more

Why do companies and people in Brazil consume ever more international (Saas) software?

07/01/2021

The already growing demand increased with the pandemic, but the bottlenecks in payments for software impact the daily life of […]

Read more

Pix: everything you need to know about this payment method

02/11/2020

Understand what pix is, how it came up and what is its impact in the future Brazilian payment market. 

Read more

Double Eleven: Want to know more about the biggest retail date in the world?

21/10/2020

Double Eleven is celebrated in China, breaking sales records every year, and is now consolidating expansion to Brazil.

Read more

Doors open to study abroad

18/09/2020

Partnership between Bexs and PayMyTuition optimizes payments for foreign courses, expanding access for Brazilians.

Read more

10 years of Black Friday in Brazil

25/08/2020

Learn more about this trend from the United States that has become one of the biggest shopping dates in Brazil, […]

Read more

Payment solution facilitates access by Brazilians to SimilarWeb SaaS

18/08/2020

The partnership between the company and Bexs Bank demonstrates the importance of adapting to the market with growing demand for […]

Read more

The disruptive in global education during the pandemic

31/07/2020

How the coronavirus outbreak has accelerated the digital revolution in education globally and the barriers to consolidating this learning tool.

Read more

Brazil’s e-commerce sales continue to post double-digit growth

01/07/2020

See the latest Webshoppers 41 figures from eBit|Nielsen, which is the largest survey of online sales in Brazil.

Read more

Bexs Bank on The Paypers – Voice of the Industry

24/06/2020

Our CEO, Luiz Henrique Didier Jr., presented on The Paypers some articles about payment industry and solutions, on the particularities […]

Read more

The accessibility of consumption to unbanked consumers

27/05/2020

The number of unbanked people has created trends and solutions that break down barriers to their inclusion with regard to […]

Read more

Consolidation of SaaS in the daily routine of companies

30/04/2020

Bexs Bank brings insights about this segment that transformed cultures around the world, posts double-digit annual growth and shows highly […]

Read more

Bottlenecks faced by companies in buying international software (SaaS)

29/04/2020

The barriers in companies for transactions involving forex hinder internal processes and the productivity of areas.

Read more

Why do Brazilians love installments?

11/09/2019

Learn more about installments, an unique method commonly adopted by Brazilians to purchase a wide range of goods and services.

Read more

The rise of subscription economy

10/09/2019

Learn more about the subscription business model that is changing consumption patterns and remaking the economy.

Read more

Payment Journey through APIs

08/08/2019

Learn more about the importance of APIs to international business strategies and cross-border payment processing.

Read more

How Chinese merchants are selling in Brazil?

25/06/2019

Brazilians are gaining more access to various products from Chinese online merchants thanks to easier payment and delivery process.

Read more

What is a bank slip or boleto?

24/06/2019

Bank slip is a payment method that is part of the daily life of millions of Brazilians. Find out all […]

Read more

Brazilian e-shoppers seek out international products

25/05/2019

Brazilian consumers are increasingly engaged in buying various products at competitive prices from international websites, despite the logistics and customs […]

Read more

How large is the Brazilian e-commerce market?

05/11/2018

The e-commerce market in Brazil is huge, but companies aiming to operate in the country must understand peculiarities regarding buying […]

Read more

Brazil’s payment world

04/11/2018

In the world of payments, each country has its particularities. Brazil is no exception.

Bank Bexs Bank Bexs

Bexs Pay

  • All Solutions
  • Payin
  • Payout
  • FX API
  • Integration types
  • Bexs Pay
    • All Solutions
    • Payin
    • Payout
    • FX API
    • Integration types

Bexs FX

  • FX Services
  • Bexs FX
    • FX Services

Institutional

  • About Bexs
  • Social Bexs
  • API Developers
  • Policy ML/FT
  • Privacy and Data Policy
  • Code of Ethics
  • Blog
  • Institutional
    • About Bexs
    • Social Bexs
    • API Developers
    • Policy ML/FT
    • Privacy and Data Policy
    • Code of Ethics
    • Blog

Contact Bexs

  • Contact Us
  • FAQ
  • Ombudsman
  • Contact Bexs
    • Contact Us
    • FAQ
    • Ombudsman

Business Call | +55 (11) 2712-5300

Customer Services | 0300 777-2397

  • Versão em English English
    • Versão em Português Português

Condomínio Edifício Brasilinterpart
Av. das Nações Unidas, 11633 - Brooklin Paulista, São Paulo/SP CEP 04578-901

Copyright © 2021 Bexs Banco de Câmbio S/A. CNPJ: 13.059.145/0001-00