What is PCI-DSS certification?
PCI DSS (Payment Card Industry Data Security Standard) is an international security standard addressed to all businesses and organizations that accept, process, store or transmit data of payment cards.
Do I need to be certified?
If you manage card data, the acquisition of certification is necessary for the determination of security specifications, according to which your business must operate.
I want to acquire PCI certification, what should I do?
To acquire certification according to PCI-DSS standards, you may visit any store of Piraeus Bank, contact at 210 38 98 954 or send an e-mail at: pcisupport@pds.gr
For how long is the certification valid?
The certification is valid for one year. In case you have conducted a Vulnerability Scan, you must repeat it every 3 months, without being required to complete again the Self-Assessment Questionnaire (SAQ). In any case, you shall receive an information e-mail, which shall remind you that you must conduct a Vulnerability Scan.
My certification has expired, do I have to follow the procedure from the beginning?
Shortly before the expiry of the certification, you shall receive an information e-mail from the certification provider company, with which you cooperate, which shall guide you to the platform, in order the follow the steps required.
Do all businesses regardless of activity and method of operation answer the same questionnaire?
There are different questionnaires depending on the characteristics and method of operation of each business. You may be informed regarding the above at the official site of PCI Council (https://www.pcisecuritystandards.org).