Payments·PCI Security Standards Council

PCI DSS v4.0

Payment Card Industry Data Security Standard — protects card-data environments through technical and operational requirements.

PlannedAuthoritative source ↗

ZenoXCare scope under PCI DSS v4.0

Card-payment integration scope: tokenization via gateway; no PAN storage; partner-mediated card-on-file. Mobile-money rails are out of PCI scope.

Linked credential

PCI DSS v4.0 Self-Assessment (SAQ A-EP)

Self-assessed; QSA validation when card data scope expands

Card payment integration scope: tokenization via gateway, no PAN storage, partner-mediated card-on-file. Mobile money rails (MTN MoMo) are out of PCI scope.

View →

Frequently asked

What is PCI DSS v4.0?: PCI DSS v4.0 is published by PCI Security Standards Council. Payment Card Industry Data Security Standard — protects card-data environments through technical and operational requirements.
Is ZenoXCare aligned to PCI DSS v4.0?: Yes — ZenoXCare's alignment to PCI DSS v4.0 is planned — committed to in the public roadmap; work has not yet started. Scope: Card-payment integration scope: tokenization via gateway; no PAN storage; partner-mediated card-on-file. Mobile-money rails are out of PCI scope.
Where can I read the authoritative source for PCI DSS v4.0?: PCI DSS v4.0 is published at https://www.pcisecuritystandards.org/standards/pci-dss/ by PCI Security Standards Council. ZenoXCare links to this canonical source on the standard's entity page so customers and regulators verify against the publisher directly.
Is there a third-party certification for PCI DSS v4.0 on ZenoXCare's roadmap?: Yes — the related third-party attestation is tracked in ZenoXCare's certifications registry under id "pci-dss-v4-saq-a-ep". Open the certification's entity page (linked from the standard page) for issuer, status, renewal cadence, and accountable owner.

Every standard on this page is anchored to its publisher's authoritative source — linked above. ZenoXCare's alignment status is reviewed quarterly by our compliance team and verified independently by the auditors who issue our certifications. To request the underlying evidence pack, please contact compliance.

← All standards Global standards & compliance

Loading standard details…

Frequently asked

What is PCI DSS v4.0?

PCI DSS v4.0 is published by PCI Security Standards Council. Payment Card Industry Data Security Standard — protects card-data environments through technical and operational requirements.

Is ZenoXCare aligned to PCI DSS v4.0?

Yes — ZenoXCare's alignment to PCI DSS v4.0 is planned — committed to in the public roadmap; work has not yet started. Scope: Card-payment integration scope: tokenization via gateway; no PAN storage; partner-mediated card-on-file. Mobile-money rails are out of PCI scope.

Where can I read the authoritative source for PCI DSS v4.0?

PCI DSS v4.0 is published at https://www.pcisecuritystandards.org/standards/pci-dss/ by PCI Security Standards Council. ZenoXCare links to this canonical source on the standard's entity page so customers and regulators verify against the publisher directly.

Is there a third-party certification for PCI DSS v4.0 on ZenoXCare's roadmap?

Yes — the related third-party attestation is tracked in ZenoXCare's certifications registry under id "pci-dss-v4-saq-a-ep". Open the certification's entity page (linked from the standard page) for issuer, status, renewal cadence, and accountable owner.

ZenoXCare — marketing

PCI DSS v4.0

ZenoXCare scope under PCI DSS v4.0

Statutory registration — credential on roadmap

Frequently asked

PCI DSS v4.0

ZenoXCare scope under PCI DSS v4.0

Statutory registration — credential on roadmap

Frequently asked