PCI-DSS SAQ B-IP v3.2.1 Assessment Template
This download includes the Self-Assessment Questionnaire B-IP and Attestation of Compliance for Merchants with Standalone, IP-Connected PTS Point-of-Interaction (POI) Terminals – No Electronic Cardholder Data Storage v3.2.1.
SAQ B-IP has been developed to address requirements applicable to merchants who process cardholder data only via standalone, PTS-approved point-of-interaction (POI) devices with an IP connection to the payment processor. An exception applies for POI devices classified as Secure Card Readers (SCR); merchants using SCRs are not eligible for this SAQ.
Completing the Self-Assessment Questionnaire:
For each question, there is a choice of responses to indicate your company’s status regarding that requirement. Only one response should be selected for each question.
A description of the meaning for each response is provided below:
Yes: The expected testing has been performed, and all elements of the requirement have been met as stated.
Yes with CCW (Compensating Control Worksheet): The expected testing has been performed, and the requirement has been met with the assistance of a compensating control. All responses in this column require completion of a Compensating Control Worksheet (CCW) in Appendix B of the SAQ.Information on the use of compensating controls and guidance on how to complete the worksheet is provided in the PCI DSS.
No: Some or all elements of the requirement have not been met, or are in the process of being implemented, or require further testing before it will be known if they are in place.
N/A (Not Applicable): The requirement does not apply to the organization’s environment. All responses in this column require a supporting explanation in Appendix C of the SAQ.
Getting StartedClick the Learn More button and get in touch.
|Type||Laws or related obligations|