How should I deal with SAQs?

What is an SAQ?

A PCI DSS Self-Assessment Questionnaire (SAQ) is a document meant to be used by merchants and service providers to help them assess and validate their compliance with PCI DSS.

Can Adyen help with SAQs?

SAQs are meant to be used by merchants and service providers to self-assess their compliance with PCI DSS. Therefore, we can’t help you complete them. But every year we collect the SAQs as part of our obligation toward card brands.

To help you reduce your PCI DSS scope, Adyen offers integrations that take care of most of the PCI DSS requirements. The simplest way for you to be PCI compliant is to use our encrypted solutions. This way, you never see or access unencrypted cardholder data.

How many SAQs you need

If you’re using several integration methods, you can either fill several SAQs per integration or one SAQ D. We recommend you fill an SAQ per integration.

If you operate in several regions, compliance with PCI DSS can be validated using a single SAQ, providing the same Cardholder Data Environment (CDE) is used, and the same policies and processes are in place.

Amount of questions per SAQ document

image3.png

The PCI DSS compliance guide

Find a handy glossary and all PCI DSS rules in Adyen Docs.

View compliance guide

Related content

The illustration of support agent wearing a headset.

Do you need additional help?

Contact our support team

Send us the details of your issue by adding images or screenshots.

Submit a request