PCI DSS Compliance Checklist

If your mobile app accepts, processes, stores, or transmits payment card information, you will need to meet certain accepted industry standards to become PCI DSS compliant.

Meeting these standards can be achieved by following a number of objectives and guidelines.

In this checklist, you will find technical guidelines for PCI DSS compliance, and a high-level overview on how app shielding software can help you meet them.

Is your app PCI DSS compliant?

If your mobile app accepts, processes, stores, or transmits payment card information, you will need to meet certain accepted industry standards to become PCI compliant.

Meeting these standards can be achieved by following a number of objectives and guidelines.

This checklist covers:

In this checklist, you will find several of the technical guidelines for apps accepting electronic payments on mobile devices found in section 4 in the PCI Mobile Payment Acceptance Security Guidelines for Developers, and a high-level overview on how app shielding software can help you meet them.

This checklist covers:

  • How to prevent unauthorized logical device access
  • How to create server-side controls and report unauthorized access
  • How to prevent escalation of privileges
  • How you harden your applications
  • How to ensure secure coding, engineering and testing
  • How you protect the mobile app from unauthorized applications
  • How to protect your mobile app from malware
  • How you provide an indication of secure state

Guides and checklists

How to protect your mobile app with the OWASP Mobile Top 10 (2024) & app shielding

Download checklist: How to mitigate the OWASP Top 10 Mobile threats
Download

App shielding

How Application Shielding can help app developers meet the PCI Mobile Payment Acceptance Security Guidelines

App shielding

Promon achieves EMVCo SBMP Certification