JCB Site Map
Home > Payment Card Industry Data Security Standard [PCIDSS]

Payment Card Industry Data Security Standard [PCIDSS]

What is the PCI Data Security Standard ?

The five international payment brands, JCB, American Express, Discover, MasterCard and Visa, established the PCI DSS global card industry security standard to ensure the security of sensitive information handled by merchants and payment processors.

JCB implements the PCIDSS standard to protect JCB cardholders account and transactioncardmember information. JCB recommends that every merchant and payment processor handling JCB card data fulfill the security requirements stipulated by PCIDSS.


PCIDSS stipulates 12 requirements to be complied with.


Build and Maintain a Secure Network

Requirement 1 : Install and maintain a firewall configuration to protect cardholder data
Requirement 2 : Do not use vendor-supplied defaults for system passwords and other security parameters

Protect Cardholder Data

Requirement 3 : Protect stored cardholder data
Requirement 4 : Encrypt transmission of cardholder data across open, public networks

Maintain a Vulnerability Management Program

Requirement 5 : Use and regularly update anti-virus software
Requirement 6 : Develop and maintain secure systems and applications

Implement Strong Access Control Measures

Requirement 7 : Restrict access to cardholder data by business need-to-know
Requirement 8 : Assign a unique ID to each person with computer access
Requirement 9 : Restrict physical access to cardholder data

Regularly Monitor and Test Networks

Requirement 10 : Track and monitor all access to network resources and cardholder data
Requirement 11 : Regularly test security systems and processes

Maintain an Information Security Policy

Requirement 12 : Maintain a policy that addresses information security

Download (PCISSC.Web Site)

JCB Data Security Program

JCB provides a program called JCB Data Security Program, which helps JCB merchants and payment processors ensure that they meet the PCI Data Security Standard (PCI DSS). JCB strongly recommends that JCB merchants and payment processors adopt the JCB Data Security Program to protect cardmember and transaction data.

Click here for details.


PCISSC (PCI Security Standards Council, LLC)

JCB, along with other four international payment brands, is a member of PCISSC an independent body formed to develop, enhance, disseminate and assist with implementation of security standards for payment account security. PCISSC is one more way in which JCB is actively promoting a safer environment for JCB card use.

PCISSC Web Site


Back to Top
Privacy Policy