PCI SSC New Self-Assessment Questionnaire (SAQ) Summary
Instructions for Completing the SAQ
- Use the guidelines herein to determine which SAQ is appropriate for your company.
- Use the appropriate Self-Assessment Questionnaire as a tool to validate compliance with the PCI DSS. Click on appropriate links in table below to access your SAQ.
- Use Navigating PCI DSS: Understanding the Intent of the Requirements to understand how and why the requirements are relevant to your organization.
Complete the appropriate Attestation document and provide it to either your acquirer or card brand, as appropriate, along with any required documentation
Instructions for Completing the SAQ Before Downloading
According to payment brand rules, all merchants and their service providers are required to comply with the PCI Data Security Standard in its entirety. There are five SAQ Validation categories, shown briefly in the table below and described in more detail in the following paragraphs. Use the table to gauge which SAQ applies to your organization, then review the detailed descriptions to ensure you meet all the requirements for that SAQ.
SAQ Validation Type |
Description |
SAQ: Select the appropriate link below. |
1 |
Card-not-present (e-commerce or mail/telephone-order) merchants, all cardholder data functions outsourced. This would never apply to face-to-face merchants. |
|
2 |
Imprint-only merchants with no electronic
cardholder data storage |
|
3 |
Stand-alone terminal merchants, no electronic cardholder data storage |
|
4 |
Merchants with POS systems connected to the Internet, no electronic cardholder data storage |
|
5 |
All other merchants (not included in Types 1-4 above) and all service providers defined by a payment brand as eligible to complete an SAQ. |
French Canadian Translation
A | B | C | D
German Translation
A | B | C | D
Italian Translation
A | B | C | D
Portuguese Translation
A | B | C | D
Spanish Translation
A | B | C | D
»Instructions and Guidelines Document
º French Canadian Translation
º Portuguese Translation
º Spanish Translation
»Navigating PCI DSS Document
º Portuguese Translation
º Spanish Translation