11:57 - 10.06.2026

---

June 10, Fineko/abc.az. Azerbaijan needs to integrate the requirements of the Payment Card Industry Data Security Standard (PCI DSS) into legislation.

ABC.AZ informs that Tamerlan Rustamov, head of the expert group on payment systems and digital banking, operating under the Association of Banks of Azerbaijan (ABA), made the above-said statement at the X International Financial and Banking Summit in Baku.

According to Rustamov, PCI DSS standards, which have been actively discussed recently, are related to the security of payment card data, and a comprehensive assessment of the ecosystem is important before applying any requirements: "It is necessary that possible requirements are reflected in the legislation of the country. Otherwise, differences in approaches may arise, which may create an additional financial burden for ecosystem participants. As a result of the assessment, it may be determined that some ecosystem participants must meet only one or two basic requirements. In this case, these requirements can be integrated into national legislation with the support of the Central Bank of Azerbaijan. Thus, financial institutions whose activities are not associated with high risk will be able to ensure information security based on local regulatory requirements. On the other hand, if the results of the assessment deem it necessary, financial institutions with a higher level of risk will be able to take steps to certify PCI DSS or meet its requirements," he said.