PCI Compliance

PCI Compliance is mandatory for companies with circuits carrying credit card data. Learn how Sensedia's PCI compliant APIs create a secure environment for your business.

Contact us to find out more

Secure environment with PCI-DSS certification

PCI is the required certification for circuits that carry credit card data.

Companies with PCI compliant solutions are able to traffic data and integrate with large credit card transaction ecosystems.

Sensedia's environments with PCI-DSS certification have the highest levels of security; its platforms have monthly vulnerability scans, penetration tests, WAFs and advanced security features such as OAuth 2.0.

Card purchase

Payment card industry security standards

Protection of cardholder payment data

Four levels of PCI certification

One
Over six million transactions per year

Two
One to six million trasactions per year

Three
From 20,000 to six million transactions per year

Four
Under 20,000 transactions per year

PCI Data Security Standards Requirements

1 – Install a working network firewall

2 – Security patches up-to-date

3 – Encrypt stored data

4 – Encrypt transmission of cardholder data across open networks.

5 – Use and update anti-virus software programmes

6 – Restrict access to data by business need-to-know

7 – Assign a unique ID to each person with computer access

8 – Don’t use vendor supplied defaults for system passwords

9 – Track all user access to data by unique ID

10 – Regularly test security systems and processes

11 – Maintain a policy that addresses security

12 – Restrict physical access to cardholder information

Clients’ Stories

Cielo is the biggest payments system in LatAm by revenue and market value. Digital Products Coordinator, Rafael Silveira, explains how APIs supported its payments platform and a large partner ecosystem

More client stories

Related Solutions

Open banking

Find out more

Retail & E-commerce

Find out more

Professional services

Find out more

Insights

Do your APIs need PCI-DSS certification? How this can help with GDPR and Open Banking

Find out more

Why PSD2 and Open Banking
means you should care about
API Management

Find out more

Open Banking: a threat or an opportunity?

Find out more