Frequently Asked Questions

Does PCI SSC provide a “PCI DSS Compliant” logo?

How does my company become a qualified assessor (QSA, PA-QSA, QSA (P2PE), PA-QSA (P2PE)), or Approved Scanning Vendor (ASV)?

What does “Duly Authorized Officer” mean?

PCI DSS provides a common data security standard across all payment brands. Are there any plans to provide a common structure of penalties and/or fines for non-compliance to this standard?

What is the involvement of the PCI SSC on the compliance validation processes for PCI DSS assessments and scan reports?