1.Previous
3.Next

These organizations, including merchants and service providers, must prove compliance to the PCI DSS through an assessment and validation process. The payment card brands issue fines and other penalties when merchants or service providers fail to prove compliance. Validation of compliance is performed annually or quarterly with a method suited to the organization's volume of transactions:
* Self-assessment questionnaire (SAQ)
* Firm-specific Internal Security Assessor (ISA)
*

1.Previous
3.Next