FAQ #1214 Diff

Organizations that participate in data preparation, manufacturing, personalizing, and/or and embossing for plastic cards are considered ServiceCard ProvidersProduction for purposes of PCI DSSVendors and shouldare typically required to adhere to PCIthe DSS.Card However,Production someand paymentProvisioning brandsStandards.Entities may already have programs in place that include PCI DSS for entities that prepare data, manufacture, personalize, or emboss plastic cards - we encourage you to check with each payment brand about their requirements for these entities. Pleaseshould contact the payment brands directly.directly for information about their compliance programs and reporting requirements, and to understand if additional PCI standards apply based upon the specific services they perform. Contact details for the payment brands can be found in FAQ 1142: How do I contact the payment card brands?