Threats to card payments are evolving and are directly linked to the digitalization of cards – to the growing use of Android for acceptance solutions – to the hosting of all or part of the acceptance/acquisition solutions in the cloud. What are these new threats? How some of the existing protections may/will lose efficacy as payments evolve ? And what additions should we make to the current PCI standards to maintain a good level of protection?