afternoon all,

It seems that the initial June 07 compliancy date is somewhat flexible when it comes to the vendors themselves. Anyone have a definitive guide on what VISA/Mastercard/AMEX/Diners view as the date for compliancy?

Thx

It should be stated that all companies must be PCI compliant right now. The standard has been in place for many years and deadlines have been set which must be met.

That said, PCI as a standard is global that is implemented by the individual card brand locally. From the perspective of Visa/MC this means working with acquiring banks, and for AmEx/Discover it means working with them direct. (JCB is a little of both models.)

You need to check with your acquiring bank or card brand to determine when you must be compliant, but again you really should be compliant now. Even with compliance deadlines it is helpful to provide them with a copy of your report on compliance (ROC) or gap-analysis showing your remediation plan and time line.