PCI DSS compliance

Every year:

  • File a Report on Compliance (“ROC”) by Qualified Security Assessor (“QSA”)” or Internal Auditor if signed by officer of the company. We recommend the internal auditor obtain the PCI SSC Internal Security Assessor (“ISA”) certification.
  • Submit an Attestation of Compliance (“AOC”) Form.

1 to 6 million Visa transactions annually across all channels – Level 2

Every year:

 

20,000 to 1 million Visa e-commerce transactions annually – Level 3

Every year:
Every year:

What to do in case of a suspected Credit Card Data Breach

 

Further study

https://usa.visa.com/support/small-business/security-compliance.html?ep=v_sym_cisp#3