Latest changes to PCI SSC frequently asked questions.
The PCI Security Standards Council will not list PCI DSS compliant service providers or merchants on its Web site, since each individual brand is responsible for managing their own PCI …
The PCI Security Standards Council encourages all businesses that store payment account data to comply with the PCI DSS to help lower their brand and financial risks associated with account …
No. QSAs and ASVs do not send reports of compliance or scanning results to the PCI Security Standards Council, and they should continue to follow the payment brand specific procedures.
Each individual brand is responsible for accepting a specific recommendation of compliance from an ASV.
No. The PCI Security Standards Council is not a compliance organization. Each brand maintains its own compliance programs.
No. In the event of a suspected account security breach, the business entity should follow existing, brand-specific processes and procedures for notifying the affected payment brand(s) and law enforcement officials.
No, the PCI Security Standards Council will not be replacing the individual brands’ compliance programs. The individual participating payment brands will separately determine what entities must be compliant, including any …
The mission of the PCI Security Standards Council is to enhance payment account security by creating and maintaining PCI Security Standards, as well fostering the education and awareness of these …
