Frequently Asked Question
How do I contact the payment card brands?
Contact the applicable payment brands and/or acquirer (merchant bank) for more information about PCI compliance programs.
Contact details for the PCI SSC Participating Payment Brands are provided below:
American Express
Website: http://www.americanexpress.com/datasecurity
Email: AmericanExpressCompliance@securetrust.com
Discover
Website: https://www.discovernetwork.com/en-us/
For questions about the DISC program:
https://www.discovernetwork.com/en-us/business-resources/fraud-security/pci-rules-regulations/
Email: DISCCompliance@discover.com
JCB
Website: http://www.global.jcb/en/products/security/data-security-program/
Email: riskmanagement@info.jcb.co.jp
Mastercard
Website: http://www.mastercard.com/sdp
Email: sdp@mastercard.com
UnionPay
Website: http://unionpayintl.com/en/
Email: risk@unionpayintl.com
Visa
Website: https://usa.visa.com/support/small-business/security-compliance.html
Asia Pacific
Email: vpssais@visa.com - for Merchant Requirement
Email: pciagents@visa.com - for Clients, Third Party Agents and Service Provider Requirements
Canada and the U.S.
Email: pcicap@visa.com - for Merchant Requirement
Email: pcirocs@visa.com - for Clients, Third Party Agents and Service Provider Requirement
Central Europe, Middle East, & Africa
Email: pcicemea@visa.com
Europe
Email: datasecuritystandards@visa.com - for Clients and Merchant requirements
Email: pcidsseurope@visa.com - for Clients, Third Party Agents and Service Provider Requirements
Latin America and the Caribbean
Email: aislac@visa.com
Visa PIN Security Program
Website: http://www.visa.com/pin
For information about PCI SSC Affiliate Members, please refer to the
following link: https://www.pcisecuritystandards.org/get_involved/affiliate_members.php
Related
-
When should an entity implement PCI DSS requirements noted as best practices until a future date?
-
For PCI DSS, can multi-factor authentication (MFA) implementations indicate the success of a factor prior to presentation of subsequent factors?
-
What is the completion date for PCI DSS assessments documented in a Report on Compliance and its related Attestations of Compliance?
Featured FAQ Articles
Featured
-
Do PCI DSS requirements for keyed cryptographic hashing apply to previously hashed PANs?
-
Is the PCI DSS Attestation of Compliance intended to be shared?
-
How does an entity report the results of a PCI DSS assessment for new requirements that are noted in PCI DSS as best practices until a future date?
-
Where do I direct questions about complying with PCI standards?
-
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
Most Popular
-
When should an entity implement PCI DSS requirements noted as best practices until a future date?
-
For PCI DSS, can multi-factor authentication (MFA) implementations indicate the success of a factor prior to presentation of subsequent factors?
-
What is the completion date for PCI DSS assessments documented in a Report on Compliance and its related Attestations of Compliance?
-
What is the completion date for PCI DSS assessments documented in a Self-Assessment Questionnaire and its related Attestations of Compliance?
-
How does PCI DSS Requirement 6.4.3 apply to 3DS scripts called from a merchant check-out page as part of 3DS processing?
Most Recently Updated
-
When should an entity implement PCI DSS requirements noted as best practices until a future date?
-
What is meant by "At-Risk Timeframe" and at risk referenced in the Final PFI Report?
-
Does PCI DSS Requirement 8.2.2 allow users to share authentication credentials?
-
For PCI DSS, can multi-factor authentication (MFA) implementations indicate the success of a factor prior to presentation of subsequent factors?
-
What is the completion date for PCI DSS assessments documented in a Report on Compliance and its related Attestations of Compliance?