PCI Watch

Tracking changes across the Payment Card Industry
ℹ️
Reference Content: This is a copy of content from the PCI Security Standards Council FAQ database, preserved for tracking changes over time.
View Original →
FAQ #1266 Published

I?m in the middle of a PCI DSS 2.0 assessment ? should I start again on version 3.0 or keep going with version 2.0?

Organizations that have already begun their validation to PCI DSS 2.0, and have not yet fully adopted the new version can complete their assessment and validation process to version 2.0 until December 31st, 2014. After this date, all validation efforts must be to PCI DSS version 3.0.

The clarifications and additional guidance provided in version 3.0 may facilitate the implementation of requirements and ease the compliance process, and organizations are strongly encouraged to complete their transition to PCI DSS version 3.0 as early as possible.

View original on PCI SSC website View all versions Back to recent changes

Disclaimer: This FAQ has been processed for display on this website and may contain errors. Please check the original FAQ on the PCI SSC website for the authoritative version.