What is the PCI DSS Self-Assessment Questionnaire?
The PCI DSS Self-Assessment Questionnaires (SAQs) are validation tools for merchants and service providers that are eligible to evaluate and report their PCI DSS compliance via self-assessment. There are a number of different SAQs available that are intended meet the needs of for particular types of environments. Each SAQ contains a ?Before you Begin? section, which outlines the type of environment that the SAQ is intended for. All the eligibility criteria for a particular SAQ must be met in order to use that SAQ. Additional guidance is also provided in the PCI DSS Self- Assessment Questionnaire Instructions and Guidelines document_-_https://www.pcisecuritystandards.org/documents/pci_dss_saq_instr_guide_v2.0.pdf in the PCI SSC Documents Library.
Merchants should also consult with their acquirer (merchant bank) or payment brand to determine if they are eligible or required to submit an SAQ, and if so, which SAQ is appropriate for their environment.