Frequently Asked Question
How do I contact the payment card brands?
Contact the applicable payment brands and/or acquirer (merchant bank) for more information about PCI compliance programs.
Contact details for the PCI SSC Participating Payment Brands are provided below:
American Express
Website: http://www.americanexpress.com/datasecurity
Email: AmericanExpressCompliance@securetrust.com
Discover
Website: https://www.discovernetwork.com/en-us/
For questions about the DISC program:
https://www.discovernetwork.com/en-us/business-resources/fraud-security/pci-rules-regulations/
Email: DISCCompliance@discover.com
JCB
Website: http://www.global.jcb/en/products/security/data-security-program/
Email: riskmanagement@info.jcb.co.jp
Mastercard
Website: http://www.mastercard.com/sdp
Email: sdp@mastercard.com
UnionPay
Website: http://unionpayintl.com/en/
Email: risk@unionpayintl.com
Visa
Website: https://usa.visa.com/support/small-business/security-compliance.html
Asia Pacific
Email: vpssais@visa.com - for Merchant Requirement
Email: pciagents@visa.com - for Clients, Third Party Agents and Service Provider Requirements
Canada and the U.S.
Email: pcicap@visa.com - for Merchant Requirement
Email: pcirocs@visa.com - for Clients, Third Party Agents and Service Provider Requirement
Central Europe, Middle East, & Africa
Email: pcicemea@visa.com
Europe
Email: datasecuritystandards@visa.com - for Clients and Merchant requirements
Email: pcidsseurope@visa.com - for Clients, Third Party Agents and Service Provider Requirements
Latin America and the Caribbean
Email: aislac@visa.com
Visa PIN Security Program
Website: http://www.visa.com/pin
For information about PCI SSC Affiliate Members, please refer to the
following link: https://www.pcisecuritystandards.org/get_involved/affiliate_members.php
Related
-
What is the scope of a PCI DSS assessment for service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Does PCI DSS apply to service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Can service providers use eligibility criteria from a merchant Self-Assessment Questionnaire (SAQ) to determine applicable PCI DSS requirements for the service provider’s assessment?
Featured FAQ Articles
Featured
-
Do PCI DSS requirements for keyed cryptographic hashing apply to previously hashed PANs?
-
Is the PCI DSS Attestation of Compliance intended to be shared?
-
How does an entity report the results of a PCI DSS assessment for new requirements that are noted in PCI DSS as best practices until a future date?
-
Where do I direct questions about complying with PCI standards?
-
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
Most Popular
-
What is the scope of a PCI DSS assessment for service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Does PCI DSS apply to service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Can service providers use eligibility criteria from a merchant Self-Assessment Questionnaire (SAQ) to determine applicable PCI DSS requirements for the service provider’s assessment?
-
What does “console access” mean for PCI DSS Requirements 8.4.1 and 8.4.2?
-
What evidence is a TPSP expected to provide to customers to demonstrate PCI DSS compliance?
Most Recently Updated
-
How do I contact the payment card brands?
-
What is the scope of a PCI DSS assessment for service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Does PCI DSS apply to service providers that can impact the security of payment account data, if the service provider does not directly store, process, or transmit payment account data?
-
Can service providers use eligibility criteria from a merchant Self-Assessment Questionnaire (SAQ) to determine applicable PCI DSS requirements for the service provider’s assessment?
-
Which version of the P2PE Standard should be used for a P2PE assessment?