# PCI DSS

**PCI DSS** - an information security standard approved in Visa and Mastercard payment card industry. All companies that accept cards for payment must comply with such requirements. Some companies need to confirm their compliance.

Safety compliance

The underlying principle to which such standard is focused is the endeavor to limit access to the data related to the payment cards as much as possible.

It is acknowledged that the best solution is to avoid processing such data ever and to address to the certified providers for pay in as an alternative. Normally, this means that we should not request and should not transfer card numbers. In case if a customer attempts to provide a card number, for example during a call on a payment problem, it is our job to immediately interrupt this attempt and explain why we cannot accept such data.

If data is received via email or messengers, we must delete it and warn the sender of the risks of transmitting card data.

By sensitive data we mean:

* Full card number
* CVV2/CVC2 code (three digits located on the back side of the card).
* The names of cardholders
* Expire Time

Concealed card numbers (first 6 and last 4 digits) do not require the same stringent protection as required by the standard and may be used reasonably.

Tarlan Payments passes such certification annually and satisfies all PCI DSS requirements

<div align="left"><figure><img src="/files/x47gZEK8LfZioEznQVFe" alt=""><figcaption></figcaption></figure></div>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.tarlanpayments.kz/eng/acquiring/welcom/pci-dss.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.