Frequently Asked Question
Does a P2PE validated application also need to be validated against PA-DSS?
A P2PE application that is used outside a PCI-listed P2PE solution may also be subject to PA-DSS per the PA-DSS Program Guide requirements.
Whether an entity is required to use a PA-DSS validated application is determined by individual payment brand compliance programs, and not by PCI SSC. For information about payment brand requirements for use of PA-DSS validated applications, please contact the payment brands directly. Payment brand contact details can be found in FAQ 1142 How do I contact the payment card brands?.