← Back to glossary
Glossary

PCI-DSS (AI Agents)

Reviewed 9 April 2026 Canonical definition

PCI-DSS is the payment card industry security standard that applies when AI agents process, store, or transmit cardholder data. Agents operating in payment environments must be scoped to minimise cardholder data exposure, and their access to payment systems must be controlled and audited in line with PCI-DSS requirements.

Related articles

Product releases 5 Questions Every Head of AI Should Ask About Agent Governance Product releases 5 Questions Every ML Engineer Should Ask About Agent Runtime Controls Product releases 5 Questions Every Risk Manager Should Ask About AI Agent Deployments

Related terms

OWASP Top 10 for LLM ApplicationsPasskeys (FIDO2/WebAuthn)PCI DSS (Payment Card Industry Data Security Standard)PII DetectionPKCE (Proof Key for Code Exchange)Plan-and-Execute (Agent Pattern)