PCI DSS Standards & Requirements

PCI DSS industry resources

Our partners

Levels 1, 2 and 3 merchants:

We recommend IRM plc and 7Safe as our preferred Qualified Security Assessor Companies. Their expertise is focused on assisting merchants and service providers achieve and maintain compliance with the Payment Card Industry Data Security Standard (PCI DSS).

They offer a portfolio of management, technical and consultancy services that will make a positive contribution towards your compliance thus enabling you to focus on what matters: growing your business. Their services will include:

  • PCI DSS consultancy using Qualified Security Assessors (QSA),
  • Penetration Testing,
  • Vulnerability scanning,
  • Qualified Incident Response Assessor (QIRA),
  • Education and training.

They offer a preferential rate to Barclaycard customers for QSA and ASV services. Visit IRM's website (This link opens in a new window) Or call them on:
+44 (0)20 7808 6420

Visit 7Safe’s website (This link opens in a new window) Or call them on:
+44 (0)870 600 1667

Level 4 merchants:

SecurityMetrics is our preferred partner. They offer discounts to Barclaycard customers who need QSA and ASV services and can help you select the most appropriate Self Assessment Questionnaire, free of charge. Visit SecurityMetrics' website (This link opens in a new window)

Or call them on:
+44 (0)844 561 1662

International:
+44 (0)20 7993 8030

Monday to Friday 9am – midnight

Other PCI DSS compliant suppliers

Visa Europe

Visit Visa's website for downloads & resources (This link opens in a new window)

MasterCard

Visit MasterCard’s website for compliant Payment Service Providers (This link opens in a new window) More about MasterCard's Site Data Protection (SDP) program (This link opens in a new window)

Qualified Security Assessors

Only approved accredited organisations can help you become PCI DSS compliant. That's why we recommend you use a Qualified Security Assessor, when you are ready to proceed.

Download PDF list of Qualified Security Assessors (This link opens in a new window)

Educate yourself

Here's a selection of learning materials about PCI DSS:

Barclaycard Merchant Education & Awareness Programme offline webinars View the webinars (This link opens in a new window)

OWASP guide to handling e-commerce payments Visit their online guide (This link opens in a new window)

MasterCard Merchant Education Programme Read the programme (This link opens in a new window)

Processing telephone payments securely Download PDF white paper

Processing online card payments securely Download PDF white paper

Financial fraud issues and fraud prevention advice Visit the financial fraud action website (This link opens in a new window)

Completing Self Assessment Questionnaires

The PCI Security Standards Council gives advice about how to complete an SAQ.

Read their instructions here (This link opens in a new window)

Latest news

Read the headlines from Finextra Cards (This link opens in a new window) Get the latest from Finextra Payments (This link opens in a new window)

You need Adobe Reader to view the PDFs. If it's not installed on your computer, you can download it here for free.
Get Adobe Reader

 

Call Charges: The following is a guide to call charge information from Business landlines within the UK.

Lending Code: Barclaycard is a trading name of Barclays Bank PLC. Barclays Bank PLC subscribes to the Lending Code which is monitored and enforced by the Lending Standards Board.
You can find out more about the Lending Code by visiting the Lending Standards Board(This link opens in a new window) website.

By clicking on a link with this icon, you're leaving a Barclaycard site and entering a website that's owned and operated by a 3rd party, where you will be subject to their website's terms and conditions.