PCI assessment

A PCI assessment is an audit for validating compliance with the Payment Card Industry Data Security Standard (PCI DSS).

A PCI assessment is an audit for validating compliance with the Payment Card Industry Data Security Standard (PCI DSS). During the assessment, a PCI Qualified Security Assessor (QSA) determines whether the business has met the PCI DSS 12 requirements, either directly or through a compensating control.

All major credit card companies require their merchants and service providers who store, process or transmit cardholder data to comply with PCI DSS. Those who process over 6 million Visa transactions a year (and are therefore Level 1 merchants) must undergo a PCI assessment performed by a QSA. The QSA completes a Report on Compliance (ROC) that verifies the business' PCI DSS compliance. The ROC is sent to the business' acquiring bank, which then sends it to the appropriate credit card company for verification.

This was first published in April 2012

Glossary

'PCI assessment' is part of the:

View All Definitions

Dig deeper on Enterprise Compliance Management Strategy

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

File Extensions and File Formats

Powered by:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close