The paper describes PCI standards: PCI PED, PCI PA-DSS, and PCI DSS. The main purpose of these new standards is to protect cardholders against unauthorized data access. As fraud in payment card systems increases, PCI standards compliance becomes mandatory for merchants, banks, and service providers. Applying the PCI standards contributes to achievement of high level of cardholder data security. The way to become PCI DSS compliant is not unique. In this paper prioritized approach is presented, which may have advantages for some organizations.
