In the UK all merchants and service providers that process, transmit or store cardholder data must comply with the PCI DSS. You can learn more about PCI DSS here https://www.itgovernance.co.uk/pci_dss