MasterCard and Compliance Reporting

Level 1 Merchants

For the annual onsite review, MasterCard allows the review to be conducted by either the merchant's internal auditor or a QSA.

Level 1, 2, 3 and 4 Merchants

To fulfill the network-scanning requirement, all merchants must conduct scans on a quarterly basis using an Approved Scanning Vendor.

Level 4 Merchants

Level 4 Merchants should consult their acquirer to determine if compliance validation is also required.

Level 1 and 2 Service Providers

For the annual onsite review, MasterCard Service Providers must use a QSA.

Level 1, 2 and 3 Service Providers

For the quarterly network-scanning requirement, all Level 1, 2 and 3 service providers must use an AVS.

MasterCard SDP Compliance

Along with following PCI DSS, MasterCard merchants must follow these steps:

• Associate the level classification in the SDP Program.
• Go through the PCI documentation and compliance validation tools.
• Make contact with an approved vendor, if needed, and follow the compliance procedures.
• Validate compliance with acquirer--the acquirer will register you with MasterCard on an annual basis, signifying compliance with the SDP Program.

                    

Print this page

Send this page to a friend

PCI DSS: 5 Guidelines for Gaining PCI Compliance Step 1: An Introduction to PCI Compliance PCI Compliance Introduction Who Put the DSS in PCI? Step 2: Finding The PCI DSS Merchant, Service and Compliance Level Should Your Organization be Concerned about PCI Compliance? PCI DSS: The Visa CISP Program MasterCard SDA Program Defining Merchant Validation Levels Level 4 Merchant Compliance Visa PCI CAP Program Defining Service Provider Validation Levels Acquirer Responsibility Calculating Merchant Transactions PCI DSS: Visa and MasterCard Quick Reference Guide Step 3: Attaining PCI DSS Compliance-Merchant Security Audits: 12 Requirements Build and Maintain a Secure Network Protect Cardholder Data Maintain a Vulnerability Management Program Implement Strong Access Control Measures Regularly Monitor and Test Networks Step 4: Finding a PCI DSS Approved Scanning Vendor (ASV) Do You Need an ASV? Merchant and Service Provider Scanning Requirements Compliance Reporting Visa and Compliance Reporting MasterCard and Compliance Reporting Step 5: Completing the PCI DSS Self Questionnaire Completing the PCI DSS Self Questionnaire PCI Compliance Polls Are you currently PCI Compliant? Yes No Working towards compliance Why are you looking at PCI Compliance Required By Credit Card Processor Required By Bank Want to meet industry standards Looking to secure network What merchant level do you fall under for PCI Compliance? Level 1 Level 2 Level 3 Level 4 I have no idea View PCI Merchant Level Results View All PCI Compliance Poll Results EV SSL Certificate Guide Sponsored Listing: