The SAQ (Self-Assessment Questionnaire) is a validation tool for merchants to demonstrate compliance with PCI-DSS standards. It is a checklist of security questions. The specific SAQ type (A, B, C, etc.) depends on how you process payments (e.g., e-commerce, face-to-face, or third-party app).

FAQs:

  • Do I have to fill out an SAQ?
    Most merchants are required to complete one annually. Stripe simplifies this by often pre-filling the relevant SAQ A for merchants using hosted pages.
  • What if I use Charge for Stripe?
    Since you are outsourcing the card handling to a compliant app/processor, your SAQ burden is usually minimal (often SAQ A or SAQ C-VT).
  • Is the SAQ hard to complete?
    For small businesses using modern tools like Stripe, it is usually a short, simple process.

Related Terms: