PCI DSS Organization Website Resources

Payment Card Industry Data Security Standards Organization Website Resources

Note: Information Supplements complement the PCI DSS and identify additional considerations and recommendations for meeting PCI DSS requirements—they do not supersede, replace or extend the PCI DSS or any of its requirements.

The PCI Security Standards Council (PCI SSC) website (www.pcisecuritystandards.org) contains a number of additional resources to assist organizations with their PCI DSS assessments and validations, including:

Document Library, including:
- PCI DSS – Summary of Changes from PCI DSS version 2.0 to 3.0
- PCI DSS Quick Reference Guide
- PCI DSS and PA-DSS Glossary of Terms, Abbreviations, and Acronyms
- Information Supplements and Guidelines
- Prioritized Approach for PCI DSS
- Report on Compliance (ROC) Reporting Template and Reporting Instructions
- Self-assessment Questionnaires (SAQs) and SAQ Instructions and Guidelines
- Attestations of Compliance (AOCs)
Frequently Asked Questions (FAQs)
PCI for Small Merchants website
PCI training courses and informational webinars
List of Qualified Security Assessors (QSAs) and Approved Scanning Vendors (ASVs)
List of PTS approved devices and PA-DSS validated payment applications

Please refer to www.pcisecuritystandards.org for information about these and other resources.