Recent FAQ Changes RSS

Latest changes to PCI SSC frequently asked questions.

FAQ 1485 New

What is the meaning of "initial assessment" in PCI DSS?

An initial assessment is an entity's first formal PCI DSS assessment that results in the submission of a compliance validation document. Examples of validation documents include an Attestation of Compliance …

FAQ 1247 Updated

Who can use SAQ P2PE?

SAQ P2PE is intended for SAQ-eligible merchants or merchant environments (as determined by the individual payment card brands), that process cardholder data only via a validated PCI-listed P2PE solution. Whether …