PCI Watch - Tracking changes across the Payment Card Industry

❓ PCI SSC FAQs FAQ #1215 Updated 2024-04-23T17:19:14+00:00

What is a PCI DSS Self-Assessment Questionnaire?

PCI DSS Self-Assessment Questionnaires (SAQs) are validation tools for use by SAQ-eligible merchants and service providers to perform and report the results of their PCI DSS self-assessments. There are several …

📣 PCI SSC Communications Press Release New 2024-04-23T14:45:05+00:00

PCI Security Standards Council Expands Role Of Payment Security Professional Nitin Bhatnagar to Strengthen Cybersecurity in Middle East

📘 PCI SSC Document Library Guidance Document Updated 2024-04-23T07:00:00+00:00

Guide to Safe Payments

Updated version published, replaces version from 2018-08-01T12:00:00+00:00

📘 PCI SSC Document Library Guidance Document Updated 2024-04-23T07:00:00+00:00

Common Payment Systems

Updated version published, replaces version from 2018-08-01T12:00:00+00:00

❓ PCI SSC FAQs FAQ #1571 Updated 2024-04-17T16:48:47+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant?s PFI Investigation and produce the PFI Final Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1571 Updated 2024-04-17T16:48:47+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant’s PFI Investigation and produce the Final PFI Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1457 Updated 2024-04-17T16:48:47+00:00

Are Mobile Payments on COTS (MPoC) solutions, Software-based PIN Entry on COTS (SPoC)™ solutions, or Contactless Payments on COTS (CPoC™) solutions eligible for a P2PE Solution approval?

No. The Mobile Payments on COTS (MPoC) Standard, Software-based PIN Entry on COTS (SPoC)™ Standard, Contactless Payments on COTS (CPoC™) Standard and the P2PE Standard are all separate PCI SSC …

❓ PCI SSC FAQs FAQ #1571 Updated 2024-04-12T12:56:39+00:00

📣 PCI SSC Communications Industry Bulletin New 2024-04-03T16:18:51+00:00

Can a compensating control be used for requirements with a periodic or defined frequency, where an entity did not perform the activity within the required timeframe?

Several PCI DSS requirements specify that a security activity is to be performed periodically or at a defined frequency. If an entity fails to perform the control on one or …

Recent Updates RSS

What is a PCI DSS Self-Assessment Questionnaire?

PCI Security Standards Council Expands Role Of Payment Security Professional Nitin Bhatnagar to Strengthen Cybersecurity in Middle East

Guide to Safe Payments

Common Payment Systems

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Are Mobile Payments on COTS (MPoC) solutions, Software-based PIN Entry on COTS (SPoC)™ solutions, or Contactless Payments on COTS (CPoC™) solutions eligible for a P2PE Solution approval?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

How can an entity meet PCI DSS requirements for PAN masking and truncation if it has migrated to 8-digit BINs?

PCI Security Standards Council Bulletin: Extension of Expiration of the PCI PTS POI v6 Security Requirements

PTS Device Attestation

PTS Attestation of Validation Form

PTS Administrative Change Request Form

Can a compensating control be used for requirements with a periodic or defined frequency, where an entity did not perform the activity within the required timeframe?