The card brands require all merchants to comply with the Payment Card Industry Data Security Standards (PCI DSS) which are designed to prevent the theft of sensitive cardholder data.

The PCI Security Standards Council has updated the Self Assessment Questionnaires (SAQs) to reflect PCI DSS version 3.0 which becomes mandatory on January 1, 2015.