FAQ #1009: In case of a suspected breach, should the PCI Security Standards Council be contacted directly?

ℹ️

Reference Content: This is a copy of content from the PCI Security Standards Council FAQ database, preserved for tracking changes over time.

View Original →

FAQ #1009 Published Version: 2008-02-21T00:00:00+00:00

In case of a suspected breach, should the PCI Security Standards Council be contacted directly?

No. In the event of a suspected account security breach, the business entity should follow existing, brand-specific processes and procedures for notifying the affected payment brand(s) and law enforcement officials.

View original on PCI SSC website View all versions Back to recent changes

Disclaimer: This FAQ has been processed for display on this website and may contain errors. Please check the original FAQ on the PCI SSC website for the authoritative version.