I already use a "PCI compliant" terminal/gateway. Doesn't that mean I am PCI compliant?

No. Use of a PCI compliant payment application is one aspect of the many PCI DSS requirements, which cover handling of sensitive data. Currently, the PCI DSS lists twelve requirements. These requirements are organized around the following principles:

Build and maintain a secure network
Protect cardholder data
Maintain a vulnerability management program
Implement strong access control measures
Regularly monitor and test networks
Maintain an information security policy

Tagged under:

FAQ Business Help
Frequently Asked Questions Treasury Services Help
Merchant Card Services Help
PCI Compliance Validation Program Help

Back To FAQ