Skip to content


PCI DSS Compliance Checklist – Get Ready for 2019

credit card processing compliance

PCI Compliance ThumbnailPayment Card Industry Data Security Standard (PCI DSS) offers several layers of protection for credit cardholders against theft. Merchants are required to maintain current standards of compliance to protect your cardholder data and avoid penalties in the event of a security breach.  The PCI Security Council outlined the 12 steps you can take to ensure compliance and protect your customer’s data.

Currently, all merchants are required to be on PCI DSS version 3.2 or 3.2.1 for PCI compliance.  On January 1st, 2019, you’ll need to process credit card validations with at least PCI DSS version 3.2.1.  The good news is that you have time to prepare. In anticipation of the new year, it’s a good time to review your PCI DSS Compliance checklist and asses your readiness for 2019 standards.  You also will need to review and complete the appropriate self-assessment questionnaire (SAQ) provided by the PCI Security Council to ensure you are following best practices of credit card handling and processing. Please visit The PCI DSS site for more information.  There are many versions of the SAQ that may apply depending on the various methods you collect credit cards such as card-present or card-not-present.

If you are using REPAY, we protect your company and your customers data with our 100% PCI DSS compliant merchant services solution.  We develop, maintain and support our PCI Compliant credit card processing software to ensure you are secure and compliant with each transaction. 

Get Ready for 2019 with the PCI DSS Compliance Checklist:

  1. Install and maintain a firewall configuration to protect cardholder data
  2. Do not use vendor-supplied defaults for system passwords and other
    security parameters
  3. Protect stored cardholder data
  4. Encrypt transmission of cardholder data across open, public networks
  5. Protect all systems against malware and regularly update anti-virus software or programs
  6. Develop and maintain secure systems and applications
  7. Restrict access to cardholder data by business need-to-know
  8. Identify and authenticate access to system components
  9. Restrict physical access to cardholder data
  10. Track and monitor all access to network resources and cardholder data
  11. Regularly test security systems and processes
  12. Maintain a policy that addresses information security for all personnel

Source: PCI Security Standards Council found in the Documents Library - The Prioritized Approach to Pursue PCI DSS Compliance -

To protect your business with credit card processing PCI DSS Compliance, hire the expert team at REPAY.  We help remove the headache of compliance and work on your behalf to reduce any fees you collect.   

REPAY enables you to cut costs and offers the following streamlined credit card processing features:

  1. Convenient 24-hour access to payment processing and reporting
  2. Automated recurring billing
  3. Improved cash flow
  4. Fraud detection and prevention (CVV and AVS controls for easy management)
  5. Reduce invoicing costs 
  6. No additional licensing fees
  7. Credit card tokenization for secure access to future customer transactions
  8. Real-time Payment Gateway 
  9. Level 3 supported gateway for US accounts, (significant savings for business to government or business to business transactions)
  10. Free virtual terminal for instant credit card processing capabilities
  11. Automatic integration available to streamline data entry and savings
  12. Batch processing when real time approvals are not required 
  13. 100% PCI-DSS compliant at no additional cost
  14. Some of the lowest American Express fees in the entire industry
  15. Next Day Funding including American Express making reconciliation process easier

New Call-to-action

Back to the blog