Why It Matters

The PCI Security Standards Council is lobbying to ensure its payment card security standards remain central to federal policy as the payments landscape transforms rapidly. With data breaches accelerating and supply chain vulnerabilities emerging as primary attack vectors, the Council faces new challenges from cryptocurrency payments and stablecoins that create security gaps traditional compliance frameworks may not address.

Legislative solutions would likely incorporate PCI standards into broader payment security and fraud prevention legislation—particularly as Congress considers stablecoin regulation and addresses rising payment fraud through measures like the EBT card security bill. The Council’s bipartisan lobbying team with deep Senate connections positions its standards as foundational infrastructure for any new regulatory frameworks before Congress acts.

By the Numbers

PCI Security Standards Council LLC has maintained consistent federal advocacy since March 2009, filing 127 total disclosures and spending $2.88 million exclusively through Holland & Knight LLP.

For the last quarter of 2025, the Council paid $60,000—consistent with quarterly spending patterns throughout 2024 and 2025. The same two-person team continues: Molly Ryan Ross (former Legislative Assistant to Sen. Susan Collins) and Misha E. Lehrer (former Legislative Aide to Sen. Chris Murphy), providing bipartisan Senate access.

The Council’s lobbying focus has remained stable across all filings, concentrating on Consumer Issues/Safety/Protection (61 mentions) and Financial Institutions/Investments/Securities (52 mentions).

The Agenda

The PCI Security Standards Council LLC lobbies on "payment card security standards issues related to data, privacy, data security, and cyber security." With no specific legislation currently moving through Congress, the Council’s advocacy appears proactive and relationship-focused.

Current congressional activity on adjacent issues—including a new EBT card security bill and emerging cryptocurrency payment innovation—suggests lawmakers are increasingly concerned with payment system vulnerabilities, creating potential openings for the Council’s standards to influence future regulatory frameworks.

Broader Context

The Council’s last quarter efforts come amid mounting payment security crises. Data breaches reached epidemic levels in 2025, with supply chain vulnerabilities as the primary attack vector. Fraud losses surged 46% year-over-year, with businesses losing 9.8% of annual revenue.

Meanwhile, cryptocurrency and stablecoins are rapidly integrating into traditional payment infrastructure, yet crypto theft reached $3.4 billion in 2025. Related congressional activity—including stablecoin legislation and the EBT card security bill—signals lawmakers’ willingness to legislate payment security solutions.

Between The Lines

No specific congressional bills currently address payment card security standards directly. However, adjacent legislative efforts signal growing concern with payment vulnerabilities. Rep. Dan Goldman’s new EBT card security bill targets payment card fraud—a core Council priority.

The Council’s lobbying is largely proactive, positioning itself as a resource before issues reach the legislative floor. This approach aligns with the absence of imminent threats, suggesting the team focuses on maintaining relationships and influencing how future payment security regulations develop.

Competitive Landscape

Visa Inc., a co-founder of the PCI Security Standards Council, actively lobbies on overlapping payment security issues. Recent Visa filings show engagement on payment card security, cybersecurity, and emerging technologies like payment stablecoins. However, Visa’s broader agenda encompasses competitive market issues including interchange fees, positioning it in distinct policy debates beyond the Council’s singular security focus.

The Bottom Line

The PCI Security Standards Council LLC continues steady, long-term advocacy through Holland & Knight LLP, spending $60,000 in the last quarter. While no direct legislative action on PCI standards is moving through Congress, the filing reflects the Council’s proactive approach to maintaining influence as lawmakers engage with adjacent issues—particularly payment fraud prevention and emerging payment technologies. The Council’s bipartisan Senate connections provide strategic access to shape future regulatory frameworks as the payments landscape evolves.

Access the Legis1 platform for comprehensive political news, data, and insights.

Spot something wrong? Report an issue with this article