Complete and report an attestation of compliance and self-assessment questionnaire (SAQ) annually.
Complete and report results of all external vulnerability assessment scans (all public-facing IP addresses used to process, view, or handle credit card data require scans) performed by an approved scan vendor (ASV) quarterly.
Create and update an information security policy annually.
Utilize a PCI scanning tool that will provide a report on the level of compliance. If there are any failures, they will need to be addressed and resolved before a rescan is to take place.
Zeen is a next generation WordPress theme. It’s powerful, beautifully designed and comes with everything you need to engage your visitors and increase conversions.