Frequently Asked Question

How do I determine whether my business would be required to conduct an independent assessment or a self-assessment?
Merchants should contact the acquiring financial institutions with whom they have merchant agreements (for example, their merchant bank) to determine whether they must validate compliance and the specific requirements for performing and reporting their compliance validation. Service providers should contact the individual payment brands for further information.
July 2012
Article Number: 1126
Related
-
Can SAQ eligibility criteria be used for determining applicability of PCI DSS requirements for assessments documented in a Report on Compliance?
-
How should QSA assistance with completion of Self-Assessment Questionnaire (SAQs) be documented?
-
Why are there multiple PCI DSS Self-assessment Questionnaires (SAQs)?