Level 2 archives - Regulatory Compliance, Governance and Security
Home > IT Blogs > Regulatory Compliance, Governance and Security >

Regulatory Compliance, Governance and Security:

level 2

Jul 24 2009   8:12PM GMT

PCI Merchant Level Requirements | VISA Merchant Level Compliance



Posted by: Charles Denyer
pci merchant level requirements, visa, american express, mastercard, Discover Card, jcb, charles denyer, level 1, level 2, level 3, level 4

PCI Merchant Level Requirements for VISA are stated as the following:

Level 1: Any merchant-regardless of acceptance channel-processing over 6,000,000 Visa transactions per year. Also, any merchant that Visa, at its sole discretion, determines should meet the Level 1 merchant requirements to minimize risk to the Visa system.

Level 2: Any merchant-regardless of acceptance channel-processing 1,000,000 to 6,000,000 Visa transactions per year.

Level 3: Any merchant processing 20,000 to 1,000,000 Visa e-commerce transactions per year.

Level 4: Any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants-regardless of acceptance channel-processing up to 1,000,000 Visa transactions per year.

The other payment brands (MasterCard, American Express, Discover Card, and JCB) also have their own requirements for merchants.

AddThis Social Bookmark Button     0 Comments     RSS Feed     Email a friend

Apr 30 2009   2:51PM GMT

PCI DSS Requirements | VISA Merchant Levels and Requirements for Compliance



Posted by: Charles Denyer
pci dss requirements, pci qsa, charles denyer, visa, mastercard, american express, amex, Discover Card, jcb, level 1, level 2, level 3, level 4, processing over 6, 000, processing 1, 000 to 6, 20, 000 to 1, fewer than 20, quarterly network scan asv, annual self assessment

PCI DSS VISA Requirements for Merchants as stated by VISA require merchants to first and foremost identify what “Level” of compliance is required. This simply requires your organization to identify the number of transactions per year that are undertaken. In short, calculate or approximate this number to see which level you fall into.

Level 1: Any merchant-regardless of acceptance channel-processing over 6,000,000 Visa transactions per year and Any merchant that Visa, at its sole discretion, determines should meet the Level 1 merchant requirements to minimize risk to the Visa system.
Level 2: Any merchant-regardless of acceptance channel-processing 1,000,000 to 6,000,000 Visa transactions per year.
Level 3: Any merchant processing 20,000 to 1,000,000 Visa e-commerce transactions per year.
Level 4: Any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants-regardless of acceptance channel-processing up to 1,000,000 Visa transactions per year.

Now, based on which Level you fall into, listed below are the requirements as set forth by VISA.

Level 1: Annual onsite review by QSA (PCI DSS Assessment) and Quarterly Network Scan by ASV
Level 2: Annual Self Assessment Questionnaire and Quarterly Network Scan by ASV
Level 3: Annual Self Assessment Questionnaire and Quarterly Network Scan by ASV
Level 4: Annual Self Assessment Questionnaire and Quarterly Network Scan by ASV

To learn more about PCI DSS Requirements, visit pciassessment.org

AddThis Social Bookmark Button     0 Comments     RSS Feed     Email a friend