PCI Compliance Overview

Payment Card Industry Data Security Standards (PCI DSS) are developed and managed by an independent, non-profit PCI Security Standards Council (PCI SSC). Founded by American Express, Discover, Visa, MasterCard and JCB International, council was created to set the security standards on global basis and prevent credit card fraud through increased security controls. Standards set by the PCI SSC applies to all organizations that store, process or transmit cardholder data.

Each credit card brand defines its own validation requirements, for example Mastercard categorizes all merchants as Level 1 if in a year they process more than six million total combined MasterCard and Maestro transactions or 6 million Visa transactions (Visa Level 1 merchants), those merchants are required to produce an Annual Report on Compliance (“ROC”) by a Qualified Security Assessor (QSA) or Internal Security Auditor (ISA), while organizations with smaller transaction volume can validate their compliance by completing Self-Assessment Questionnaire (“SAQ”) and performing quarterly network scans by an Approved Scanning Vendor (ASV). Any merchant that has suffered a data breach that resulted in an cardholder data compromise is automatically categorized as a Level 1. Other brands have similar reporting requirements, we recommend you visit their websites to learn more.

WestNet is an approved PCI QSA Company

If you need PCI Compliance Audit, PCI Gap Analysis or help with your self assessment questionnaire, visit our Qualified Security Assessor (QSA) page or call us for more information.

PCI Compliance Overview

Our pledge as PCI-QSA company

PCI and Service Providers

WestNet Consulting Services is based in Los Angeles

For PCI Assessment
Please call 818-288-8282