FAQ #1223 Diff

PCI DSS applies to any entityentities involved in payment card processing or that stores, processes, or transmitsotherwise store, process, or transmit cardholder data,data; the Payment Application Data Security Standard (PA-DSS) applies to payment applications that store, process, or transmit cardholder data as part of authorization or settlement,settlement; and theEncrypting PIN Pads (EPPs) for ATMs and unattended payment terminals can be validated under the PIN Transaction Security (PTS) POI requirements apply torequirements.

While the Payment Card Industry Security Standards Council (PCI SSC) manages the payment security standards and related programs, each payment brand is responsible for their own compliance programs, including who must comply with the different standards, due dates for compliance, fines, etc. To determine whether ATMs and unattended payment terminals. That being said, while the Payment Card Industry Security Standards Council (PCI SSC) manages the payment standards and related processes, each payment brand is responsible for their own compliance programs, including such features as who must comply, due dates, fines, etc. To determine whether ATMs must validate PCI DSS, PA-DSS, or PTS compliance, please contact the payment brands directly.