There is a set of established rules to protect the customer’s card data when paying online. It is called the Payment Card Industry Data Security Standard (PCI DSS) and is governed by the Payment Card Industry Security Standards Council (PCI SSC).

According to the PCI DSS Quick Reference Guide, it consists of 6 objectives with 12 main requirements.