PCI DSS Compliance

The Payment Card Industry Data Security Standard (PCI DSS) protects cardholder data (CHD).

It prevents thieves from stealing cardholder data (CHD) and using it to commit fraud, which affects consumer confidence and damages your reputation as a merchant. 

PCI DSS covers the security of systems and networks that store, process or transmit card data. It only covers credit card transactions. Learn more about the PCI Security Standards Council, what it does, and why it’s important.


All UBC Credit Card Merchants that store, process or transmit CHD as payments to UBC and/or operate Point of Sale (POS) systems and devices must be PCI DSS v.3.2.1 compliant.

Each UBC merchant is responsible for ensuring and validating their own compliance at their own cost, and compliance must be renewed annually.

The PCI Security Standards Council was founded in 2006 by American Express, Discover Financial Services, JCB International, MasterCard, and Visa Inc. to enhance payment account data security. The Council administers and manages the Payment Card Industry Data Security Standards (PCI DSS).

The standards govern:

  • anyone who stores, process or transmit cardholder data
  • payment application software development
  • payment hardware manufacturing.

Security Benefits of Compliance

  • Prevent the theft of credit card data or CHD and resulting fraud.
  • Protect your reputation as a merchant.
  • Maintain consumer confidence.
  • Avoid financial liabilities, fines and penalties.
  • Retain the ability to accept credit cards.

Learn more about why security matters