PCI Watch - Tracking changes across the Payment Card Industry

📣 PCI SSC Communications Blog New 2024-08-21T00:00:00+00:00

Sneak Peek: 2024 North America Community Meeting Speakers

The excitement is building as we get closer to this year’s North America Community Meeting! To add to the anticipation, we’re giving you a sneak peek of some of …

📣 PCI SSC Communications Blog New 2024-08-20T00:00:00+00:00

Now is the Time for Organizations to Adopt the Future-Dated Requirements of PCI DSS v4.x

Merchants around the world use the Payment Card Industry Data Security Standard (PCI DSS) to safeguard payment card data before, during, and after a purchase is made. The standard is …

📣 PCI SSC Communications Blog New 2024-08-19T00:00:00+00:00

Welcome to the Newest Associate Participating Organizations

We are pleased to welcome the newest organizations that have joined as Associate Participating Organizations of the PCI Security Standards Council (PCI SSC). These organizations play a crucial role in …

❓ PCI SSC FAQs FAQ #1583 New 2024-08-15T13:15:53+00:00

What is the completion date for PCI DSS assessments documented in a Report on Compliance and its related Attestations of Compliance?

For PCI DSS assessments documented in a Report on Compliance (ROC), the Date of Report is considered the completion date for the PCI DSS assessment. This denotes the date when …

❓ PCI SSC FAQs FAQ #1582 New 2024-08-15T13:11:05+00:00

What is the completion date for PCI DSS assessments documented in a Self-Assessment Questionnaire and its related Attestations of Compliance?

For PCI DSS assessments documented in a Self-Assessment Questionnaire (SAQ), the Self-Assessment completion date denotes the date the PCI DSS self-assessment was completed, either by the entity, or, if applicable, …

❓ PCI SSC FAQs FAQ #1581 New 2024-08-15T13:04:37+00:00

How does PCI DSS Requirement 6.4.3 apply to 3DS scripts called from a merchant check-out page as part of 3DS processing?

The objective of PCI DSS Requirement 6.4.3 is to ensure that unauthorized code cannot be executed in the payment page as it is rendered in the consumer's browser.

In …

❓ PCI SSC FAQs FAQ #1571 Updated 2024-08-15T08:03:56+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant's PFI Investigation and produce the Final PFI Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1571 Updated 2024-08-15T07:56:40+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant’s PFI Investigation and produce the Final PFI Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1444 Updated 2024-08-15T07:56:40+00:00

Can a PFI Company perform subsequent PFI investigations for the same entity?

PFI Companies must adhere to the independence requirements of the PFI program as defined in the PFI Qualification Requirements and PFI Program Guide. Whether a PFI Company can conduct a …

📣 PCI SSC Communications Blog New 2024-08-13T00:00:00+00:00

Coffee with the Council Podcast: Meet This Year’s Europe and Asia-Pacific Community Meeting Keynote Speaker, Dr Bruce McCabe

Welcome to our podcast series Coffee with the Council. I'm Alicia Malone, Senior Manager of Public Relations for the PCI Security Standards Council. Today, I am so excited to …

📣 PCI SSC Communications Blog New 2024-08-07T00:00:00+00:00

Recent Updates RSS

Sneak Peek: 2024 North America Community Meeting Speakers

Now is the Time for Organizations to Adopt the Future-Dated Requirements of PCI DSS v4.x

Welcome to the Newest Associate Participating Organizations

What is the completion date for PCI DSS assessments documented in a Report on Compliance and its related Attestations of Compliance?

What is the completion date for PCI DSS assessments documented in a Self-Assessment Questionnaire and its related Attestations of Compliance?

How does PCI DSS Requirement 6.4.3 apply to 3DS scripts called from a merchant check-out page as part of 3DS processing?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Can a PFI Company perform subsequent PFI investigations for the same entity?

Coffee with the Council Podcast: Meet This Year’s Europe and Asia-Pacific Community Meeting Keynote Speaker, Dr Bruce McCabe

Sneak Peek: 2024 Community Meeting Keynote Speakers

PCI Security Standards Council Announces 2024–2026 Global Executive Assessor Roundtable

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Can a partial PCI DSS assessment be documented in a Report on Compliance (ROC)?

Coffee with the Council Podcast: Meet This Year’s North America Community Meeting Keynote Speaker, Tom Koulopoulos