« Featured on the SecureLexicon Podcast | Main | PCI DSS Goes v1.2.1 »

Visa Sets Payment Application Security Mandates

As many of us in the industry had suspected, Visa has delayed its payment application security mandates two years to 2010 (newly boarded merchants) and 2012 (all merchants). The information was officially released on June 24, but I certainly did not see any public reference to it until recently. This is rumored to be largely in response to a low supply and high demand issue in the fuel industry.

So those of you that were dealing with unrealistic deadlines, you've got a reprieve! Keep pushing though, don't be one of those guys limping in at the eleventh hour!

Posted by Branden Williams on August 7, 2009 5:33 AM |

Comments

"Note: These mandates will not supersede any applicable earlier deadlines and related enforcement programs already in place for the U.S. and Canada, which require acquirers to ensure tha their merchants and agents use PA-DSS compliant payment applicatons by 1 July 2010."

Posted by: Lucas | August 7, 2009 7:07 AM

Yep, excellent point! I'm hearing from some of my acquiring contacts though that this 2012 deadline may be extended to certain industries or select groups.

Posted by: Branden Williams Author Profile Page | August 7, 2009 7:30 AM

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)