Fraud prevention

PCI DSS - Payment Card Industry Data Security Standards

According to the PCI DSS regulations, merchants are allowed to take, store and forward sensitive card data only if they are holders of certificates of compliance with the prescribed standards. PCI DSS (Payment Card Industry Data Security Standards) is a set of rules and guidelines defined by the global PCI DSS Council, which consists of all relevant card companies. Web shops on whose pages card information is entered are obliged to fill in a certain SAQ A-EP questionnaire and verify it by the QSA (Qualified security advisor) company. Certification needs to be passed every year, and certification prices depend on the number of transactions, the model of work and the scope of certification.

For more details on everything that is necessary for PCI DSS certification, you can contact directly the companies that deal with it (such as www.siq.si) whose website lists everything you need to meet these standards. It is our recommendation that you use our WSPayFORM to enter card data, which meets all the necessary security standards for card data transfer. In that case, it is necessary to fill in and sign the SAQ A questionnaire and send it to us at wspay@wspay.si.