… Asked Questions What is the Payment Card Industry Data Security Standard (PCI DSS)? PCI DSS is the result of a collaboration of the major credit card associations to establish a single data security standard designed to protect sensitive cardholder information. Who has to comply with PCI DSS? Any entity that stores, processes or transmits cardholder data (including credit and debit cards) must comply with PCI DSS requirements. What can happen if I am … risk exposing customers (students, faculty, staff and the general public) to fraud and identity theft. Breach of cardholder information can result in negative publicity and cause damage to SDSU’s reputation. Non-compliance can also result in the loss of credit card and debit card acceptance privileges. What is cardholder data? The full magnetic strip or the …