How do I complete the PaySimple PCI compliance questionnaire?


The following is an example of how a merchant utilizing a third party software application that utilizes PaySimple iFrames to provide payment processing functionality as part of the application might answer the questions in the Aperia PCI Compliance program.  This example assumes that the merchant only accepts payments via a webpage hosted as part of a SaaS application provided by a PaySimple integrated partner.  If merchants process in other ways, this example may not apply. Note that this is only one example, and it may not be applicable to all merchants—merchants are wholly responsible for ensuring that they are accurately answering all questions in the Aperia PCI Compliance program.

 

Part 1 Merchant Information

  • Complete/confirm that the business information and contact info is correct

Part 2 Merchant Business Payment Channels

  • These questions should be answered as 'No' since the merchant wouldn't be storing, but check and answer only those that apply to how the merchant is processing:



Part 3 Relationships

  • Answer ‘Yes’ to the first two questions, and ‘No’ to the last question.
  • Include PaySimple here as the payment gateway and iFrame provider
  • Include the name of the PaySimple Integrated Partner here as the provider of payment processing web pages implemented with PaySimple iFrames
    • This is assuming that all processing is done from a PaySimple Integrated Partner site using our iFrames




Part 4 Processing Solution

  • Select Moto/e-commerce as long as the merchant only uses the web pages on the PaySimple Integrated Partner SaaS application with PaySimple iFrames to process (answer differently if other methods are used). 
  • Answer ‘No’ to the question about storing sensitive cardholder data
  • Answer ‘No’ to the network segmentation question impacting the scope of your PCI DSS environment
  • Answer “Hosted payment and iFrame” to the first MoTo/e-commerce question
  • Answer ‘No’ to the second question regarding a redirection mechanism. 
    • Include both PaySimple and the name of the PaySimple Integrated Partner for the Moto/e-Commerce solution information.

 



 

Click ‘Save & Continue’

 

  • At this point you will see the SAQ-A qualification modal shown below, and you will not be shown the scan screens. You will now be able to complete the SAQ-A. (Answer the modal affirmatively by checking the box and clicking continue):