article thumbnail

PCI requirements and who needs to follow them

Basis Theory

Third-Party Service Provider ( TPSP or "service provider") refers to an entity other than the Merchant, Acquirer, or Issuer involved in storing, processing, or transmitting card data. In addition, documenting configurations, settings, and policies ensures future compliance for the CDE. Don't, however, let the term "merchants" fool you.

PCI DSS 88