What are the current PCI DSS compliance deadlines?
Currently, Level 1 merchants must successfully: • Complete annual on-site assessments, conducted by a Payment Card Industry Standards Security Council (PCI SCC)-Approved Qualified Security Assessor (QSA) or via an internal auditor or equivalent • Pass quarterly scans by a PCI SCC-Approved Scanning Vendor (ASV) By June 30, 2011, according to MasterCard’s latest revisions to its SDP program, Level 1 merchants who use internal auditors (or the equivalent) for completing on-site assessments must ensure that their auditors: • Attend PCI SSC merchant training programs, which have yet to be announced • Pass annual PCI SSC-associated accreditation programs • Pass quarterly scans by a PCI SCC-Approved Scanning Vendor (ASV) Currently, Level 2 merchants must successfully: • Complete annual Self-Assessment Questionnaires (SAQs). • Pass quarterly scans by a PCI SCC-Approved Scanning Vendor. By June 30, 2011, according to MasterCard’s latest revisions to its SDP program, Level 2 merchants must provi
