The most globally applicable financial-data standard — contractually mandatory rather than statutorily mandatory, but binding for every merchant and service provider that touches cardholder data.
Cybsis 2.0 ships PCI DSS 4.0.1 with the merchant-level filtering (Level 1–4 / Service Provider Level 1–2), the Self-Assessment Questionnaire selection logic, and the Cardholder Data Environment (CDE) scoping documentation.