Payment Service Provider

Table B: Visa - Service Provider Levels and Validation Actions

Level Description Validation Action
1 VisaNet processors or any service provider that stores, processes and/or transmits over 300,000 transactions per year* Annual On-Site PCI Data Security Assessment

Quarterly Network Scan
2 Any service provider that stores, processes and/or transmits less than 300,000 transactions per year** Annual PCI Self-Assessment Questionnaire

Quarterly Network Scan

* Eliminates payment gateway definition from several existing regional programs.

** Effective February 1, 2009, Level 2 service providers will no longer be listed on Visas' List of PCI DSS Compliant Service Providers. Entities that wish to be on the List of PCI DSS Compliant Service Providers must validate as a Level 1 provider.

Level 1 service providers need to be validated by a Qualified Security Assessor and an Approved Scanning Vendor; Level 2 service providers can use the Self-Assessment Questionnaire and need to be validated by an Approved Scanning Vendor.



Table C: MasterCard - Service Provider Levels and Validation Actions
Level Description Validation Action
1 All TPPs.

All DSE's that store, transmit, or process greater than 300,000 total combined MasterCard and Maestro transactions annually.		 Annual Onsite review performed by a Qualified Security Assessor (QSA).

Quarterly scan by an Approved Scanning Vendor (ASV).
2 Includes all DSE's that store, transmit, or process less than 300,000 total combined MasterCard and Maestro transactions annually. Annual Self-Assessment Questionnaire (SAQ).

Quarterly scan by an Approved Scanning Vendor (ASV).
Quick Search
Your Cart
Cart
  • Cart empty
0 items £0.00 View cart Checkout
By Brand
Monthly newsletter!
Special Offers, latest products, get updated with our monthly newsletter.

Sign up here.

Sign up to receive exclusive discounts, products reviews and the latest industry news.

Latest Products