A set of security standards established by the PCI Security Standards Council (founded by Visa, Mastercard, American Express, Discover, and JCB) to protect cardholder data. Requirements include implementing multi-factor authentication for administrative access, maintaining strong access control measures, encrypting transmission of cardholder data across open networks, and regularly testing security systems. Compliance is mandatory for any organization that processes, stores, or transmits payment card data.