{"id":1879,"date":"2009-11-19T00:11:00","date_gmt":"2009-11-19T00:11:00","guid":{"rendered":"http:\/\/productcart-com.web7.netsourceinc.com\/blog\/index.php\/2009\/11\/19\/pci-compliance-step-2-which-self-assessment-questionnaire-applies-to-you\/"},"modified":"2009-11-19T00:11:00","modified_gmt":"2009-11-19T00:11:00","slug":"pci-compliance-step-2-which-self-assessment-questionnaire-applies-to-you","status":"publish","type":"post","link":"https:\/\/blog.productcart.com\/index.php\/2009\/11\/19\/pci-compliance-step-2-which-self-assessment-questionnaire-applies-to-you\/","title":{"rendered":"PCI Compliance Step 2: which Self Assessment Questionnaire applies to you"},"content":{"rendered":"<p>This is the second of a series of articles that we will publish in an attempt to make things a bit more clear when it comes to PCI Compliance. In the <a href=\"http:\/\/blog.earlyimpact.com\/2009\/11\/pci-compliance-step-1-find-out-your.html\">first article<\/a>, we talked about how to find out what kind of merchant you are (the &#8220;<a href=\"http:\/\/blog.earlyimpact.com\/2009\/11\/pci-compliance-step-1-find-out-your.html\">merchant level<\/a>&#8220;).<\/p>\n<p>Your merchant level is important because there are different requirements in place depending on which level your business falls into. One requirement that applies to all merchants is filling out a &#8220;<a href=\"https:\/\/www.pcisecuritystandards.org\/saq\/index.shtml\">Self Assessment Questionnaire<\/a>&#8221; (or SAQ) prepared by the PCI Security Standards Council. How often you need to fill out the Questionnaire changes depending on the merchant level (see the links mentioned in the first article).<\/p>\n<p>The problem is&#8230; there are 4 different SAQs. Which one&#8217;s for you? The different questionnaires are labeled with letters A to D. SAQ A is short and sweet, but only applies in certain circumstances. B &amp; C don&#8217;t apply to online stores. D is the one that most commonly applies.<\/p>\n<p>SAQ A only applies in rather rare scenarios in which the e-commerce application used on your Internet storefront is not considered a <i>payment application<\/i>. That only happens when it is not transmitting and\/or storing any credit card information at all. This can only occur when you are using (and <span style=\"text-decoration: underline;\">only<\/span> using) a completely outsourced checkout process such as PayPal Express Checkout.<\/p>\n<p>Applying all of the above to your ProductCart-powered store&#8230;<\/p>\n<ul>\n<li>If your ProductCart-powered store does NOT transmit and\/or store any credit card information, then you can use <b>SAQ A<\/b>. This applies when:\n<ul>\n<li>There is no payment option that involves credit card information<\/li>\n<\/ul>\n<\/li>\n<ul>\n<li>You are using <span style=\"text-decoration: underline;\">only <\/span>one or more of the following payment options, which share the fact that no payment information is entered on your Web store (but rather on a page hosted on the payment system\u2019s Web site), and no payment information is ever stored in your database:\n<ul>\n<li>2Checkout<\/li>\n<li>Google Checkout<\/li>\n<li>PayPal Express Checkout<\/li>\n<li>PayPal Standard<\/li>\n<li>WorldPay<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<li>In all other cases you must use <b>SAQ D<\/b>.<\/li>\n<\/ul>\n<p>We&#8217;ll start talking about the Self Assessment Questionnaire itself in the next article on PCI Compliance.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This is the second of a series of articles that we will publish in an attempt to make things a bit more clear when it comes to PCI Compliance. In the first article, we talked about how to find out what kind of merchant you are (the &#8220;merchant level&#8220;). Your merchant level is important because [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_et_pb_use_builder":"","_et_pb_old_content":"","_et_gb_content_width":"","footnotes":""},"categories":[3,5],"tags":[],"class_list":["post-1879","post","type-post","status-publish","format-standard","hentry","category-online-payments","category-security"],"_links":{"self":[{"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/posts\/1879","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/comments?post=1879"}],"version-history":[{"count":0,"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/posts\/1879\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/media?parent=1879"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/categories?post=1879"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.productcart.com\/index.php\/wp-json\/wp\/v2\/tags?post=1879"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}