| Requirement Name | Confirmation of Data and PCI Security Standards |
|---|---|
| Location Type |
|
| Accreditation Type |
|
| Requirement Language | English |
| Type of Requirements | Mandatory |
| Requirement Text |
Please note that the Payment Card Industry Data Security Standard (PCI DSS) applies to any organization—regardless of its size or number of transactions—that accepts, transmits, or stores cardholder data. In accordance with PCI DSS guidelines, the requirements for PCI DSS compliance and validation vary depending on the number of transactions processed by the merchant. All merchants are classified into one of four merchant levels based on their credit card transaction volume over a 12‑month period, with Level 1 being the highest (more than 6 million transactions per year) and Level 4 the lowest (fewer than 20,000 transactions per year). To help ensure your full compliance with PCI DSS as required by the card schemes, we encourage you to visit our dedicated PCI DSS webpage, where you will find all necessary information to support your business with any PCI DSS‑related matters. However, if you do not intend to accept, transmit, or store cardholder data, you may instead submit the Credit Card Nil Self‑Declaration. Please note that if you do not demonstrate your compliance with PCI DSS, the member airlines will be informed. |
