Frequently Asked Questions

< Back to search page

Does PCI SSC provide a list of PCI DSS-compliant service providers?

FAQ Response

No, PCI SSC does not provide a list of PCI DSS-compliant service providers, nor does PCI SSC certify service providers as PCI DSS compliant.

PCI DSS is applicable to all entities that store, process or transmit cardholder data. However, whether an entity is required to validate their compliance with PCI DSS is determined by the payment brands’ compliance programs. Some of the payment brands do recognize compliance of service providers and may provide their own list of PCI DSS-compliant service providers. Please check with the payment brands to understand their compliance programs and whether they recognize compliant service providers.

 

March 2020
Article Number 1138