The PCI Security Standards Council adopted this GCP PCI Compliance as a set of network security and business best practices guidelines to establish the "minimum security standard" to secure customers' payment card information. The PCI DSS applies to all systems, networks, and applications that process, store, or transmit cardholder data and techniques that secure and log access to the procedures in scope. Google Cloud has at least one third-party audit annually to certify individual products against the GCP PCI Compliance.