PCI DSS is a security standard required for any business that stores, processes, or transmits cardholder data. Providers may charge PCI program or portal fees for tools, scanning, or support. With PCI DSS 4.1 updates taking effect in 2025 (e.g., script integrity requirements), staying compliant avoids fines (often $5,000–$100,000/month) and account termination risks. Payment processors can also charge non-compliance fees to merchants that fail to meet PCI requirements.
