Not long ago, Visa Inc. changed its policy on complianceassessments for the Payment Card Industry Data Security Standard (PCI DSS).

More specifically, Visa decided that a merchant that meets a certain set of criteria, including processing 75% of its transactions using chip-and-PIN enabled terminals would no longer need to undergo a PCI assessment. Unfortunately, not all merchants are aware of the change, and fewer understand what it means. In this tip, we’ll not only explain the changes and their implications, but also cover ways in which all organizations can make PCI compliance a whole lot easier.