PCI Watch - Tracking changes across the Payment Card Industry

📝 PCI SSC Blog PCI Perspectives New 2025-12-15T15:13:01+00:00

Meet the Council’s New Client Engagement Operations Director

The PCI Security Standards Council (PCI SSC) is pleased to welcome its newest team member, Chelsea Lopez, Client Engagement Operations Director. As Client Engagement Operations Director, Chelsea will …

📘 PCI SSC Document Library PTS Updated 2025-12-15T08:00:00+00:00

PTS POI Technical Frequently Asked Questions

Files: 5 files in 5 versions
Updated from October 06, 2025 at 07:00 AM UTC to December 15, 2025 at 08:00 AM UTC

📘 PCI SSC Document Library P2PE Updated 2025-12-10T08:00:00+00:00

P2PE v3.x Technical FAQs

Updated version published, replaces version from 2025-06-30T07:00:00+00:00

📝 PCI SSC Blog PCI Perspectives New 2025-12-02T16:11:47+00:00

The AI Exchange: Innovators in Payment Security Featuring SISA

Welcome to the PCI Security Standards Council’s blog series, The AI Exchange: Innovators in Payment Security. This special, ongoing feature of our PCI Perspectives blog offers a resource for …

📝 PCI SSC Blog PCI Perspectives New 2025-12-01T16:42:39+00:00

Meet the Council’s New Director, Training Programs

The PCI Security Standards Council (PCI SSC) is pleased to welcome its newest team member, Emily Wilder, Director, Training Programs. As Director, Training Programs, Emily serves as the …

📝 PCI SSC Blog PCI Perspectives New 2025-11-24T18:09:32+00:00

Request for Comments: PCI Key Management Operations (KMO) v1.0 Standard

From 24 November to 9 January, eligible PCI SSC stakeholders are invited to review and provide feedback on the draft PCI Key Management Operations (KMO) v1.0 Standard during …

📝 PCI SSC Blog PCI Perspectives New 2025-11-19T20:20:18+00:00

PCI SSC Publishes Mobile Payments on COTS (MPoC) Guidance Document

The PCI Security Standards Council (PCI SSC) has published a Mobile Payments on Commercial Off-The-Shelf (MPoC) Guidance Document, a new resource developed to support consistent interpretation and …

📘 PCI SSC Document Library MPoC New 2025-11-19T08:00:00+00:00

PCI MPoC Guidance

❓ PCI SSC FAQs FAQ #1305 Updated 2025-11-17T10:26:32+00:00

How do individuals obtain examination accommodation or adjustments for PCI SSC programs?

Individuals with a physical or mental impairment, or a limitation described as a disability under the Americans with Disabilities Act (ADA) or other applicable law, may request examination accommodations or …

❓ PCI SSC FAQs FAQ #1427 Updated 2025-11-17T08:33:05+00:00

Are OEMs and/or hardware/software resellers considered third-party service providers for PCI DSS Requirements 12.8 and 12.9?

Original equipment manufacturers (OEMs) and equipment resellers may provision equipment initially for the cardholder data environment (CDE), but once the equipment has been provisioned, they may no longer be involved …

❓ PCI SSC FAQs FAQ #1147 Updated 2025-11-17T08:31:21+00:00

What is the purpose of PCI DSS Requirement 8.2.8, which requires users to reauthenticate after 15 minutes of idle time?

The intent of this requirement is to prevent an unauthorized person from using an unattended console/PC to gain access to the user's computer and accounts, and potentially to the company's …

❓ PCI SSC FAQs FAQ #1601 New 2025-11-14T17:11:42+00:00

What is the impact if an entity uses a third-party service provider (TPSP) to meet a PCI DSS requirement(s), when that TPSP’s PCI DSS assessment completion date is close to a year ago, as documented in the TPSP’s Attestation of Compliance (AOC)?

Any evidence reviewed as part of a PCI DSS assessment, where the assessor deems it to be valid when it is reviewed, remains valid for that assessment and does not …

❓ PCI SSC FAQs FAQ #1177 Deleted 2025-11-05T09:00:46+00:00

How does my company become a qualified assessor (QSA, PA-QSA, QSA (P2PE), PA-QSA (P2PE)), or Approved Scanning Vendor (ASV)?

The PCI Security Standards Council (PCI SSC) maintains a robust evaluation and qualification program for approved security assessors and scanning vendors. Information on becoming a qualified assessor or scan vendor …

❓ PCI SSC FAQs FAQ #1225 Deleted 2025-11-05T09:00:46+00:00

What is the relationship between the PCI Data Security Standard and the Payment Application Data Security Standard and PTS Device Security Requirements?

PCI DSS is the standard for merchants and service providers to protect cardholder data. The PA-DSS and PTS device security requirements support the overall implementation of PCI DSS by allowing …

❓ PCI SSC FAQs FAQ #1020 Deleted 2025-11-05T09:00:46+00:00

How does PA-DSS support a merchant's PCI DSS compliance?

The PA-DSS details the requirements a payment application must meet in order to facilitate a customer’s PCI DSS compliance. PA-DSS validated payment applications, when implemented in a PCI DSS-compliant environment, …

Recent Updates