The level of Payment Card Industry Data Security Standard (PCI DSS) that NetSuite is compliant with is Level 1.
The Payment Card Industry Data Security Standard is a worldwide information security standard assembled by the Payment Card Industry Security Standards Council (PCI SSC). The security standard applies to all entities that store, transmit or process cardholder information, applies across all the major card brands, and is vital for NetSuite to maintain compliance with.
NetSuite is a Level 1 Service Provider and validates compliance with PCI DSS via annual on-site data security assessments and quarterly network scans, both performed by an approved, independent vendor.
For verification of NetSuite's compliance with the Payment Card Industry Data Security Standards (PCI DSS), please refer to the NetSuite listing in Visa's Global Registry of Service Providers, found on the Visa web-site (www.visa.com/splisting).