Frequently Asked Question

Do ISPs that provide only internet connection need to comply with the PCI DSS?

If the ISP only provides a “pipe” for internet access, then it is not considered a service provider and is not subject to PCI DSS compliance. However, if the ISP is providing additional services such as firewalls or hosting functions, it is considered a service provider and would need to comply with the PCI DSS.

April 2012

Article Number: 1044

Frequently Asked Question

Frequently Asked Question

Do ISPs that provide only internet connection need to comply with the PCI DSS?

Featured FAQ Articles

Featured

Most Popular

Most Recently Updated

Copyright © 2006 – 2023 PCI Security Standards Council, LLC. All rights reserved. Terms and Conditions.

Frequently Asked Question

Do ISPs that provide only internet connection need to comply with the PCI DSS?

Related

Featured FAQ Articles

Featured

Most Popular

Most Recently Updated

Copyright © 2006 – 2023 PCI Security Standards Council, LLC. All rights reserved. Terms and Conditions.