Payment Card Industry Data Security Standard
A contractual security standard that applies to any organization that stores, processes, or transmits payment card data. It defines requirements like network segmentation, encryption, access control, and regular testing. It is enforced by the card brands rather than by governments, but noncompliance can mean fines and losing the ability to accept cards.