The PCI SSC does not manage the process for reporting PCI DSS compliance. Please check with your acquiring bank or payment card brands for this information.
Article Number 1257
Can the “Compliant but with Legal exception” option in the AOC be used to identify where a testing procedure could not be performed due to a legal constraint?
What date should be used for “Date of Report” in the ROC?
Can an Attestation of Compliance (AOC) be provided to an assessed entity before the Report on Compliance (ROC) is finalized?
What is an Attestation of Compliance?
Can the AOC be redacted to protect sensitive information?