FAQ #1266 Diff

I?m in the middle of a PCI DSS 2.0 assessment ? should I start again on version 3.0 or keep going with version 2.0?

Earlier Version
2013-12-13T00:00:00+00:00

Later Version
2015-05-28T00:00:00+00:00

Removed

Added

Organizations that have already begun their ~~validation to~~ PCI DSS ~~2.0,~~validation ~~and~~when ~~have not yet fully adopted the~~a new version is released can complete their assessment and validation process to the previous version ~~2.0~~prior ~~until~~to ~~December~~its ~~31st,~~retirement. ~~2014.~~Once ~~After~~the ~~this~~previous ~~date,~~version has been retired, all validation efforts must be to the most current PCI DSS ~~version 3.0.~~version.

~~The~~As clarifications and additional guidance provided in ~~version~~updated ~~3.0~~PCI DSS versions may facilitate the implementation of requirements and ~~ease~~address ~~the~~current ~~compliance process, and~~threats, organizations are strongly encouraged to complete their transition to the most current PCI DSS version ~~3.0~~ as early as possible.

Disclaimer: This FAQ has been processed for display on this website and may contain errors. Please check the original FAQ on the PCI SSC website for the authoritative version.