Transcription of Third-Party Security Assurance - PCI Security Standards
{{id}} {{{paragraph}}}
Standard: PCI data Security Standard (PCI DSS) Version: Date: August 2014 Author: Third-Party Security Assurance Special Interest Group PCI Security Standards Council Information Supplement: Third-Party Security Assurance Information Supplement Third-Party Security Assurance August 2014 i This document is provided solely for informational purposes as a convenience to its readers. Information provided here i does not replace or supersede the requirements of any PCI SSC Standard or the need for proper due diligence and appropriately qualified legal counsel. Table of Contents 1 Introduction .. 1 Intended Use .. 2 2 Audience .. 2 2 Examples of Third-Party Service Providers .. 4 3 Third-Party Service Provider Due Diligence .. 5 Determining the Scope of the Services Provided .. 6 Due Diligence Research of the Third-Party Service Provider .. 6 Acquirer/Payment Card Brands .. 8 Third-Party Service Provider Validation Documentation.
For purposes of this document, all references made are to PCI DSS v3.0. 1.2 Terminology The following terms are used throughout this document: Entity – An entity is any organization that has the responsibility to protect card data and may leverage
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}