PCI Watch

Tracking changes across the Payment Card Industry
ℹ️
Reference Content: This is a copy of content from the PCI Security Standards Council FAQ database, preserved for tracking changes over time.
View Original →
FAQ #1082 Published

If a merchant has multiple processing environments, should the merchant complete multiple SAQ forms to validate their PCI DSS compliance?

If a merchant has multiple processing environments, whereby one environment qualifies it to complete SAQ form A and another qualifies it to complete SAQ form B, then it is advisable that the merchant default to the more stringent of the two SAQ forms (in this case, SAQ form B). However, we recommend that the merchant consult with its acquirer to determine which SAQ form would be appropriate to validate the merchant?s PCI DSS compliance.

View original on PCI SSC website View all versions Back to recent changes

Disclaimer: This FAQ has been processed for display on this website and may contain errors. Please check the original FAQ on the PCI SSC website for the authoritative version.