PCI SAQ 3.2 Revisions: Is Your Business Affected?

February 3, 2017 • Published Categories Industry TopicsTags , , ,
PCI SAQ 3.2 Revisions - Learn the impact Rev. 1.1 could have on your business.

This week, the PCI Security Standards Council (SSC) announced their release of Revision 1.1 to SAQ 3.2. The SSC characterizes this revision as “errata,” and after careful examination, it is truly mostly “errata.”  That is, there are small language changes, some corrected misspellings and a few instances of … Read more

“Do I Really Need a Firewall?”

January 5, 2016 • Published Categories PCI 101Tags , , ,

Ask the security and compliance experts. PCI Compliance Guide readers regularly ask us questions and we are happy to answer as many as we can. That’s because this site’s (and ControlScan’s) goal is to help make the process simpler and clear up any misinformation by providing actionable, … Read more

Five PCI DSS 3.0 “Best Practices” About to Become Required

May 18, 2015 • Published Categories Industry TopicsTags , , , , , , ,

When PCI DSS v3.0 became effective January 1, 2015, businesses were allowed an additional six months’ leeway on a handful of requirements. During that time period, these “evolving requirements” could be considered “best practices” rather than must do’s. As of July 1, 2015, however, these … Read more

More Specialized SAQs: The New SAQ B-IP

April 8, 2014 • Published Categories Industry TopicsTags , , , , , , , , , , , ,

The new PCI DSS version 3.0 Self Assessment Questionnaires (SAQs) are out, and after our initial look, there are some notable differences. This article focuses on the brand new “SAQ B-IP” for “Merchants with Standalone, IP-Connected PTS Point-of-Interaction (POI) Terminals – No Electronic Cardholder Data … Read more