What Has to be Known: Changes Required for Your Business - McDermott

PCI DSS 4.0 – Everything You Need to Know About The Transformational Changes Required of Your Business


The Payment Card Industry Security Standards Council recently released version 4.0 of its Data Security Standard (PCI DSS 4.0). The new version—which brings major changes to the payments ecosystem—places an increased focus on targeted risk analysis, organizational maturity and governance. It also makes PCI DSS compliance a continuous effort, rather than an annual snapshot exercise, and introduces a customized approach to PCI assessments, enabling businesses to implement alternative technical and administrative controls that meet the customized approach objective.

Join members of McDermott’s Global Privacy & Cybersecurity team and Alan Gutierrez-Arana of RSM US as they discuss how merchants, service providers, issuers, acquirers, and any other businesses that store, process, or transmit payment cardholder data should begin planning for PCI DSS 4.0.

Discussion topics will include:

  • How businesses must prepare for the increased legal risks of PCI DSS 4.0’s obligations.
  • The structural changes required to convert to PCI DSS 4.0 and the PCI assessment requirements.
  • When businesses should consider involving legal counsel and other consultants to assess their transition to PCI DSS 4.0.

Dig Deeper

Paris, France / Speaking Engagements / November 23, 2023

Barreau de Paris | Paris Legal Makers II

Brussels / Speaking Engagements / November 15-16, 2023

IAPP Europe Data Protection Congress 2023

Brussels, Belgium / ICC | International Institute of Communications / November 28, 2023

IIC Chapter Meeting | A Competitive European Connectivity Market – What’s the Future Outlook for Tele

Washington, DC / Speaking Engagements / November 8-10, 2023

Privacy + Security Forum Fall Academy 2023

Las Vegas, NV / McDermott Event / November 1, 2023

ITC Vegas Cocktail Reception with McDermott

Get In Touch