Frequently Asked Question

What is meant by a “payment application” in Part 2d of the Attestation of Compliance?
A payment application is a commercial application that stores, processes, or transmits cardholder data as part of authorization or settlement. A common example of a payment application is the software running on a point-of-sale (POS) terminal. For information about payment applications used in your environment, contact the application vendor. For applications installed on a POS system, the POS terminal provider or your acquirer (merchant bank) may also be able to assist.
July 2015
Article Number: 1062
Related
-
Is the PCI DSS Attestation of Compliance intended to be shared?
-
Can sensitive information be redacted from the PCI DSS Attestation of Compliance before it is shared with other entities?
-
Can the “Compliant but with Legal exception” option in the AOC be used to identify where a testing procedure could not be performed due to a legal constraint?