Assessors

Companies performing PCI Data Security Assessments for merchants and service providers must be approved by Visa as a Qualified Data Security Company (QDSC) (PDF, 88k).

PCI validation assessments performed by Visa-approved Qualified Data Security Companies (QDSC) have become increasingly critical in today’s environment. The proficiency with which a QDSC conducts an assessment can have a tremendous impact on the consistent and proper application of PCI measures and controls.

Details on the requirements for existing and potential QDSC’s are provided in PCI Qualified Data Security Company Requirements (PDF, 432k). To meet the high level qualification requirements, security companies must: (a) Apply as a firm for qualification in the program; (b) Provide documentation of financial stability, technical capability, and industry experience; (c) Qualify individual employees to perform the assessments; and (d) Execute an agreement with Visa governing performance.

Please direct any questions to cisp@visa.com.

For a list of assessors qualified to perform assessments outside of the U.S., please visit:

• Europe (EU)
• Asia Pacific (AP)
• Canada
• LAC - Latin America (LAC)
• Central Europe, Middle East, Africa (CEMEA)