A "Partial Assessment is a new assessment result What is a ‘Partial Assessment’?
A.
A ROC that has been completed after using an SAQ to determine which requirements should be tested. As per FAQ 1331. (As long as the entity meets the SAQs eligibility criteria)
B.
An interim result before the final ROC has been completed
C.
A term used by payment brands and acquirers to describe entities that have multiple payment channels with each channel having its own assessment
D.
An assessment with at least one requirement marked as Not Tested”
According to requirement 3.1.2, an assessment with at least one requirement marked as Not Tested is considered a partial assessment, which means it does not meet all the requirements and controls defined in Appendix E of the PCI DSS v3.2.1 Quick Reference Guide1. This is one of the requirements for ensuring that assessments are conducted in accordance with PCI DSS.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit