American Express - Data Security: PCI Security Requirements

Start of menu

My Account
You are under MyAccount Primary Tab
Card AccountExpand / Collapse
Business AccountsExpand / Collapse
Other AccountsExpand / Collapse
- International Money Transfers for Card Members
Cards
You are under New Cards Primary Tab
Personal CardsExpand / Collapse
Small Business CardsExpand / Collapse
Corporate CardsExpand / Collapse
Gift CardsExpand / Collapse
- View Gift Cards
Travel
You are under Travel Primary Tab
Online TravelExpand / Collapse
Travel ResourcesExpand / Collapse
Business TravelExpand / Collapse
Travel MoneyExpand / Collapse
Insurance
You are under Insurance Primary Tab
All InsuranceExpand / Collapse
- Insurance Homepage
Insure my travelsExpand / Collapse
Insure my pet and possessionsExpand / Collapse
- Pet Insurance
- Gadget Insurance
Insure meExpand / Collapse
Rewards
You are under Rewards Primary Tab
Membership RewardsExpand / Collapse
Other Reward ProgrammesExpand / Collapse
OffersExpand / Collapse
- Cardmember offers
- Refer friends. Get rewarded.
InvitesExpand / Collapse
- Entertainment
Business
You are under Business Primary Tab.
MerchantsExpand / Collapse
CorporationsExpand / Collapse
Small Business CardsExpand / Collapse
Global NetworkExpandir / Colapsar

GET STARTED...

	Data Security Home
	Merchant Information
	Service Provider Information
	PCI Security Requirements
	Frequently Asked Questions
	Watch Data Security Video

PCI Security Requirements

As part of our commitment to data security, American Express requires that all of our Merchants and Service Providers and their Covered Parties:

Store Cardmember information only to facilitate Card transactions as described in their agreement with American Express
Comply with the current Payment Card Industry Data Security Standard

Covered Parties include Merchants' :

Employees
Agents
Representatives
Subcontractors
Processors
Service Providers

Covered Parties also include providers of its Point-of-Sale equipment, systems or payment processing solutions, as well as any other party to whom a merchant may provide access to Cardmember information in accordance with its Card Acceptance Agreement.

View the Payment Card Industry Data Security Standard.

List Of Assessors

The PCI Security Standards Council is assuming responsibility for the Qualified Security Assessors (QSA) program previously administered separately by Visa International. All new and existing QSAs must contract directly with the Council.

Click here to find a QSA