Skip to content
English
  • There are no suggestions because the search field is empty.

PCI Compliance: Understanding the 15-Question vs. 288-Question Assessment

 PCI Compliance: Understanding the 15-Question vs. 288-Question AssessmentOverview

As part of maintaining PCI DSS (Payment Card Industry Data Security Standard) compliance, all merchants processing card payments through Paysafe must validate their compliance annually.

Paysafe offers two methods for completing PCI compliance:

  1. Complete the simplified PCI assessment through the Paysafe PCI Portal (approximately 15 questions).
  2. Complete the full PCI Self-Assessment Questionnaire (SAQ) externally (approximately 288 questions) and upload it to the PCI Portal.

Both methods satisfy PCI compliance requirements. The option you choose determines how you complete the assessment and whether the Paysafe PCI Portal Management Fee applies.

Option 1: Complete the PCI Assessment Through the Paysafe Portal (Approximately 15 Questions)

Who should use this option?

Most ServiceBox Payments merchants should use this option.

This simplified assessment is intended for merchants who:

  • Do not store cardholder data electronically.
  • Do not process or transmit cardholder data themselves.
  • Use PCI-compliant third-party payment providers to handle card payments.
  • Simply need to validate that their business practices meet PCI requirements.

How it works

  1. After your merchant account is activated, you will be enrolled in the Paysafe PCI Portal.
  2. You will receive:
    • A welcome email.
    • A password setup email.
  3. Log into the PCI Portal.
  4. Complete the business profile and PCI assessment questions.
  5. Electronically attest that the information provided is accurate.

The portal guides you through the process and reduces the number of questions you need to answer by determining which requirements apply to your business.

Annual Renewal

PCI compliance is valid for 12 months.

Each year you will need to:

  • Re-attest that your business practices have not changed.
  • Complete any new PCI requirements that may have been introduced.
  • Submit your updated validation through the portal.

The portal automatically sends reminder emails when your renewal date is approaching.

Portal Management Fee

Merchants who use the Paysafe PCI Portal assessment process may be charged a PCI Portal Management Fee as outlined in their merchant agreement.

If you have questions about this fee, please contact Paysafe directly.

Option 2: Complete the Full PCI Self-Assessment Questionnaire (Approximately 288 Questions)

Who should use this option?

This option is typically used by merchants who:

  • Prefer to complete PCI compliance independently.
  • Work with a Qualified Security Assessor (QSA).
  • Already have an internal PCI compliance process.
  • Do not wish to use the Paysafe PCI Portal assessment tool.

How it works

  1. Download the current PCI Self-Assessment Questionnaire (SAQ) from the PCI Security Standards Council.
  2. Complete the full assessment documentation.
  3. Sign and date the completed questionnaire.
  4. Upload the completed documents to the Paysafe PCI Portal.

Important

The PCI Security Standards Council periodically updates PCI requirements. Before each annual renewal, merchants should download the latest version of the questionnaire rather than reusing an older copy.

Portal Management Fee

According to Paysafe, merchants who complete the full external SAQ and upload the completed documentation may avoid the monthly PCI Portal Management Fee because they are not utilizing the portal's guided assessment tool.

What Happens If I Do Nothing?

All merchants enrolled in the PCI program have 45 days from enrollment to complete PCI validation.

If PCI validation is not completed within that period, a Non-Compliance Fee may be charged monthly until compliance is achieved.

Current non-compliance fees communicated by Paysafe are:

Region Monthly Non-Compliance Fee
United States $34.95 USD
Canada $46.95 CAD

These fees apply regardless of whether you intended to complete the 15-question portal assessment or the 288-question external assessment.

Which Option Should I Choose?

Choose the Paysafe Portal Assessment (15 Questions) if:

  • You want the easiest and fastest way to become PCI compliant.
  • You want step-by-step guidance.
  • You do not have internal PCI compliance expertise.
  • You prefer a simplified process managed through the portal.

Choose the Full SAQ (288 Questions) if:

  • Your organization already manages PCI compliance independently.
  • You work with a PCI assessor or compliance consultant.
  • You prefer to maintain your own compliance documentation outside of the Paysafe portal.
  • You are comfortable completing PCI DSS requirements without guided assistance.

For PCI-specific questions, contact Paysafe's PCI Team directly:

Email: PaysafePCI@Paysafe.com

The PCI team can assist with:

  • PCI compliance questions
  • Portal access issues
  • Validation requirements
  • Uploading external SAQ documentation
  • Compliance status inquiries

Need Help?

If you have any questions or need support, please click the Help button in your ServiceBox account or email us at support@getservicebox.com.