Overview

As the Payment Card Industry–Data Security Requirements (PCI-DSS) marks its 20th anniversary, the areas of accountability are expanding beyond card payment data to encompass a holistic view of merchants’ data security ecosystems across all commerce channels. Although the scope of PCI-DSS is not increasing, per se, as it relates to the security requirements for payment data, merchants must attest to having compliant security processing places across the enterprise. For the first time, merchants can construct their compliance checklists that address the risks in their businesses rather than using a template provided by the PCI standards.

Key questions discussed in this report: 

  • What is likely to be the impact of PCI 4.0 for merchants? 
  • How should merchants prepare for PCI 4.0? 
  • What is changing with PCI 4.0 that is more significant than previous changes?

Companies Mentioned: 

American Express, Discover, JCB, Mastercard, PCI Security Standards Council, LLC, Verizon Business, Visa

Learn More About This Report & Javelin

Related content

April 22, 2025
Surcharging on Card Transactions: In Search of Balance

The decision by a merchant to impose a surcharge on credit card transactions—usually a percentage of the purchase price to offset the cost of card acceptance—is understandable but ...

March 31, 2025
Payment Orchestration: Making the Juice Worth the Squeeze

Payment orchestration has come to the forefront as enterprise merchants work to squeeze the most from their payment platform. In addition to optimizing authorization rates, merchan...

February 28, 2025
Implementing Pay-By-Bank: A Guide for Merchants

Many merchants are exploring alternative ways to accept payments from customers and reduce the rising cost of accepting card payments, but is the U.S. banking infrastructure ready ...

Make informed decisions in a digital financial world

Let's Connect