PCI-DSS (Payment Card Industry Data Security Standard) is a set of technical and operational requirements for organisations accepting or processing payment transactions.
Every business that accepts card payments is required to attest compliance with PCI-DSS standards at some level.
PCI scope refers to the level of responsibility that a merchant has for ensuring the security of sensitive card information.