PCI Watch - Tracking changes across the Payment Card Industry

❓ PCI SSC FAQs FAQ #1214 Updated 2024-01-19T20:58:00+00:00

Which PCI standards apply to card manufacturers, embossers, card personalizers, or entities that prepare data for card manufacturing?

Organizations that participate in data preparation, manufacturing, personalizing, and/or embossing for plastic cards are considered Card Production Vendors and are typically required to adhere to the Card Production and Provisioning …

📣 PCI SSC Communications Blog New 2024-01-18T00:00:00+00:00

Watch Now: Exclusive Payment Security Insights

The 2024 PCI SSC Global Content Library is now available! The PCI SSC Global Content Library is home to hours of video content from PCI SSC’s Community Meetings. Learn directly …

📣 PCI SSC Communications Press Release New 2024-01-17T14:59:04+00:00

Gina Gobeyn Named New Executive Director of PCI Security Standards Council

📣 PCI SSC Communications Blog New 2024-01-10T00:00:00+00:00

PCI SSC Participating Organizations Share Why You Should Join the Council in 2024

Collaboration is at the heart of the PCI Security Standards Council’s mission to help secure payment data globally. As a global forum, the Council brings together payments industry stakeholders to …

❓ PCI SSC FAQs FAQ #1571 Updated 2023-12-20T00:00:00+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant?s PFI Investigation and produce the PFI Final Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1571 Updated 2023-12-20T00:00:00+00:00

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Yes, a PFI Final Report is required. The expectation is that the PFI must complete the merchant’s PFI Investigation and produce the Final PFI Report, with details of adequate evidence …

❓ PCI SSC FAQs FAQ #1448 Updated 2023-12-20T00:00:00+00:00

What is meant by ?at risk? and ?at-risk timeframe? referenced in the Final PFI Report?

When completing the spreadsheet referenced within the Final PFI Report under Appendix C: Impacted Entities, an account is considered ?at risk? if evidence indicates the account number was exposed (i.e. …

📣 PCI SSC Communications Blog New 2023-12-14T00:00:00+00:00

Limited Revision Planned for PCI DSS v4.0

To address stakeholder feedback and questions received since PCI DSS v4.0 was published in March 2022, PCI SSC is planning a limited revision of the standard. Proposed changes include correcting …

❓ PCI SSC FAQs FAQ #1575 Updated 2023-12-06T21:02:00+00:00

Does PCI SSC consider guidance from other standards organizations when making updates to PCI standards?

Yes. PCI SSC considers the guidance provided from many different standards organizations when updating our standards, balancing the guidance against the unique needs and challenges of the payments industry.There may …

❓ PCI SSC FAQs FAQ #1575 New 2023-12-06T00:00:00+00:00

Does PCI SSC consider guidance from other standards organizations when making updates to PCI standards?

Yes. PCI SSC considers the guidance provided from many different standards organizations when updating our standards, balancing the guidance against the unique needs and challenges of the payments industry.

…

❓ PCI SSC FAQs FAQ #1571 Updated 2023-12-06T00:00:00+00:00

Recent Updates RSS

Which PCI standards apply to card manufacturers, embossers, card personalizers, or entities that prepare data for card manufacturing?

Watch Now: Exclusive Payment Security Insights

Gina Gobeyn Named New Executive Director of PCI Security Standards Council

PCI SSC Participating Organizations Share Why You Should Join the Council in 2024

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

What is meant by ?at risk? and ?at-risk timeframe? referenced in the Final PFI Report?

Limited Revision Planned for PCI DSS v4.0

Does PCI SSC consider guidance from other standards organizations when making updates to PCI standards?

Does PCI SSC consider guidance from other standards organizations when making updates to PCI standards?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Is the expectation that any PFI investigation initiated must result in a PFI Final Report?

Request for Comments: Draft PCI 3DS Core Security Standard v2.0 and Draft PCI 3DS Data Matrix v2.0

PCIP Qualification Requirements

Just Published: PCI DSS v4.x Targeted Risk Analysis Guidance