If you store, process or transmit sensitive cardholder data then your organization will be in scope for the Payment Card Industry Data Security Standard (PCI DSS) regulation. You will need to achieve and maintain compliance to protect your business, agents and customers from fraud risk and data breaches. While not a legal obligation, it is required by the leading card companies for taking credit or debit card payments. If you suffer a breach and are found non-compliant - the significant fines can be crippling.

Is your contact center ready for the PCI DSS 4.0 changes?

The first wave of PCI DSS 4.0 requirements are here, bringing a significant shift in how organizations should approach and maintain securing customer payment data. This is just the beginning, as the PCI DSS 4.0 timeline now shifts to the March 31st 2025 deadline, with a further 51 new requirements.

Catch up on our latest webinar with Jeremy King, Regional VP at the PCI Security Standards Council, we'll discuss how PCI DSS version 4.0 will impact your contact center operations and outline what you need to do ahead of it before the deadline.

Please accept marketing cookies to watch this video.

Benefits of PCI DSS v4.0 compliance

Trust with card data

  • Ensure your systems are secure and payment data free
  • Give your customers confidence in doing business with you

Reputation for security

  • Improve your reputation with acquirers and pay­ment brands
  • Reassure your customers that their card details are in safe hands

Compliance and security

  • Stay ahead of all potential cyber and security threats
  • Maintaining compliance is a good step toward total security

Learn more about the PCI DSS 4.0 changes

What is PCI DSS v4.0?

19 Apr 2022

Over the next several months, the security experts at Eckoh will be diving into the new Payment Card Industry Data Security Standards (PCI DSS) released by the PCI Security Standards Council (PCI SSC). Here's a brief overview of the new standard.

Read more

Why PCI DSS v4.0 Demands a New Mindset from Merchants

10 Feb 2023

What does PCI DSS v4.0 have to do with a gym membership? As the new payment security standard’s deadline speeds towards us, US merchants are getting themselves in shape. But some fitness plans are far easier than others.

Read more

Blizzards ahead? Contact centers dash for compliance base camp

31 Oct 2023

Unfortunately, meeting the March 2024 deadline for the first phase of PCI DSS 4.0 could feel like getting to Everest base camp for contact centers. But how should you press on to reach the summit of the new payment security standard in 2025? Here’s some expert advice.

Read more

Download the latest guide to PCI DSS

Learn the latest on navigating the Payment Card Industry Data Security Standard

PCI DSS Reference Guide Mock Up

What does PCI DSS compliance cover?

The scope of a PCI DSS audit is extensive and can require either an external auditor or dedicated internal resource to spend a number of months analyzing and evaluating the environment and internal processes, to determine compliance without a guarantee of ongoing security.

Who is the Payment Card Industry Data Security Council?

The PCI SSC governs the PCI DSS regulation, offering robust and comprehensive standards to enhance payment card data security that merchants must comply with. Compliance monitoring comes in the form of an annual audit that concentrates on three main areas:

  • Data collection and storage processes
  • Reporting data protection processes
  • Monitoring and alerting use of data
Eckoh Card Circle

Other areas of Compliance


If you take card payments, you need to be PCI DSS compliant



Personal data now needs to be as secure as payment data



The Markets in Financial Instruments Directive now impacts a wider range of firms and people


Read more in our
Compliance Hub

Have any questions?
Get in touch