PCI Security Standards Council®

Coronavirus (COVID-19)

PCI SSC is aware of the unprecedented situation caused by the spread of COVID-19. As circumstances evolve, questions have arisen surrounding a variety of issues, including the impact on assessments and trainings. We are actively monitoring the developments and collaborating with our stakeholders and community on response and needed guidance.

We have established this webpage for all updates, so please be sure to check regularly as this is a constantly evolving situation.

The Council has established resources for all COVID-19 updates, so please be sure to check our blog regularly as this is a constantly evolving situation.

Last updated 12 March 2020 at 09:00
REMOTE ASSESSMENTS

Due to restrictions on travel and meetings as a result of the coronavirus, PCI SSC has published guidance for assessors on the topic of remote assessments. Read the blog here.

Last updated 9 March 2020 at 11:50

Our existing guidance on remote assessments remains in effect at this time and we are working with our partners and assessment community to establish additional guidance. However, if you experience any issues meeting your compliance obligations, please be sure to discuss with your Brands or Acquirer.

Last updated 26 March 2020 at 13:00
GUIDANCE ON WORKING REMOTELY

PCI SSC is dedicated to providing necessary guidance to the payments industry during evolving circumstances related to COVID-19. The current climate is forcing more global organizations to a remote-work model. As organizations make this shift, it is important to maintain security practices to protect payment card data. Read the following PCI Perspectives blog posts for guidance related to protecting payments while working remotely.

How the PCI DSS Can Help Remote Workers

Protecting Payments While Working Remotely

NOTE: If you experience any issues meeting your compliance obligations, please be sure to discuss with your Brands or Acquirer.

Last updated 26 March 2020 at 10:00
BEWARE OF COVID-19 ONLINE SCAMS AND THREATS

With the rise in phishing and social engineering attacks designed to exploit the COVID-19 crisis, several government organizations around the globe, including the U.S. Secret Service (USSS), U.S. Department of Justice (DOJ), Federal Trade Commission (FTC), Europol,  CERT-In (The Indian Computer Emergency Response Team),  ReBIT ( [The Technology Arm of Reserve Bank of India), ABECS (Brazilian Credit Card Association), andJC3 (Japan Cybercrime Control Center)have issued warnings about these threats.  The PCI SSC has published guidance on this important topic.  Read the blog here.

Last updated 24 March 2020 at 10:15
IMPORTANT TRAINING SCHEDULE UPDATE: INSTRUCTOR-LED TRAININGS (ILT)

With the primary concern continuing to be for the safety of everyone involved, and the current global travel restrictions, PCI SSC has decided to cancel all instructor-led training (ILT) courses through the end of June 2020. The courses that are impacted by this cancellation are:

  • 23-26 March: Dallas, TX
    QSA, ISA
  • 20-24 April: Berlin, DE
    QSA, QPA, 3DS
  • 20-21, 23-24 April: Mumbai, India
    QSA, QSA
  • 21-28 April: Boston, MA
    ISA, QSA, P2PE
  • 4-7 May: Denver, CO
    PCIP, 3DS, QPA
  • 1-2, 5 June: London, EN
    ISA, PCIP
  • 1-4 June: Tokyo, JP
    ISA, QSA
  • 2-10 June: Toronto, CA
    ISA, QSA, CPSA-L, CPSA-P

We are looking to reschedule these courses in the future and hope to restart our instructor-led trainings later in 2020.

For those that have already signed up for these courses, PCI SSC is evaluating options that would allow us to deliver specific courses using virtual and remote training tools, and we will provide those updates later soon.

Please also note that we have amended our Refund Policy to accommodate these changes. We will work with registered trainees in an effort to either refund your training fees or move you into another class. Where the applicable program allows, we may alternatively move attendees to computer-based training.

Please be sure to check back regularly for additional updates. Please monitor the PCI SSC Coronavirus (Covid-19) webpage for the latest information.

Please contact training@pcisecuritystandards.org with any questions or concerns.

Last updated 17 March 2020 at 13:40
NEW DATE ANNOUNCED – INDIA TOWN HALL

PCI SSC has rescheduled the India Town Hall in Mumbai for Monday, 14 December 2020. The event will take place at the Hyatt Regency Mumbai. Please save the date and continue to check back for more information.

Last updated 13 March 2020 at 17:00
IMPORTANT TRAINING SCHEDULE UPDATE: INSTRUCTOR-LED TRAININGS (ILT)

With the primary concern for the safety of everyone involved, and the current uncertainty of global travel restrictions, PCI SSC has decided to cancel all instructor-led training (ILT) courses through the end of May 2020. The courses that are impacted by this cancellation are:

  • 23-26 March: Dallas, TX
    QSA, ISA
  • 20-24 April: Berlin, DE
    QSA, QPA, 3DS
  • 20-21, 23-24 April: Mumbai, India
    QSA, QSA
  • 21-28 April: Boston, MA
    ISA, QSA, P2PE
  • 4-7 May: Denver, CO
    PCIP, 3DS, QPA

We are looking to reschedule these courses in the future and we will be reviewing the situation again at the end of April.

We will publish any additional changes at that point. For those that have already signed up for these courses, PCI SSC is evaluating options that would allow us to deliver specific courses using virtual and remote training tools, and we will provide those updates later this month.

Please also note that we have amended our Refund Policy to accommodate these changes. We will work with registered trainees in an effort to either refund your training fees or move you into another class. Where the applicable program allows, we may alternatively move attendees to computer-based training.

Please be sure to check back regularly for additional updates. Please monitor the PCI SSC Coronavirus (Covid-19) webpage for the latest information.

Please contact training@pcisecuritystandards.org with any questions or concerns.

Last updated 11 March 2020 at 09:30
LATIN AMERICA FORUM AND COMMUNITY MEETING UPDATE

PCI SSC continues to monitor the COVID-19 crisis and its impact on our community and stakeholders. At the present time, we are moving forward with the Latin America Forum in Sao Paulo, Brazil scheduled for 13 August and our Community Meetings scheduled for 15-17 September in Orlando, Florida, 20-22 October in Nice, France, and 11-12 November in Hanoi, Vietnam. The health and safety of our attendees remains our top priority and we will continue to evaluate the situation and monitor domestic and international conditions carefully. Please be sure to check back regularly for updates.

Last updated 10 March 2020 at 12:20
PTS POI EXPIRATION EXTENSION

Due to supply-chain disruptions related to the COVID-19, the PCI Council has changed the extended date for PIN Transaction Security Point-of-Interaction (PTS POI) version 3 devices from April 30, 2020 to April 30, 2021. Read the Bulletin Here.

Last updated 4 March 2020 at 14:00
INDIA TOWN HALL UPDATE

As concerns grow around the spread of COVID-19, yesterday Indian Prime Minister Modi recommended avoiding mass gatherings to avoid the spread of the virus. In deference to this guidance, we have made the difficult decision to cancel the India Town Hall in Mumbai scheduled for 22 April 2020. The health and well-being of our attendees are of the utmost importance to us and we did not take this decision lightly. We are looking into making arrangements to host this event later in the year and will circulate additional details once they become available. We apologize for any inconvenience this may have caused you and thank you for your understanding.

At the present time, we are continuing with our QSA training classes on 20-21 April and on 23-24 April, as these are smaller events. That said, in recognition of companies that may have travel restrictions or individuals who may not be comfortable traveling at this time, we are waiving any cancellation fees associated with these trainings.

The PCI Perspectives blog will also be updated with the latest information. Subscribe to the blog to receive instant email notifications.

We appreciate your understanding as we work with this evolving situation.

Our website uses both essential and non-essential cookies to analyze use of our products and services. This agreement applies to non-essential cookies only. By accepting, you are agreeing to third parties receiving information about your usage and activities. If you choose to decline this agreement, we will continue to use essential cookies for the operation of the website. View Policy