As an Adyen user, you are required to comply with the Payment Card Industry Data Security Standard (PCI DSS) regulations.
To prove your compliance, you need to fill in the SAQ C-TV and SAQ A forms. This document provides simple instructions for these forms.
Process
- SAQ C-TV (Self-Assessment Questionnaire C-TV) and
- SAQ A (Self-Assessment Questionnaire A)
- Click the hyperlink from the email.
- Insert your details in the web form and submit. Afterwards, you will receive a new email from Adyen/Docusign. Open the email and click the link “Review Documents.”
- You’re forwarded to an online form. These are the fields that you need to fill in:
- Section 1
- Adyen Company Account Name is the name of the hotel.
- Company Name is the legal entity of the hotel.
- Business Address: location of the legal entity.
- Sales Channels: select “E-Commerce & MOTO” or “MOTO” (in C-TV form).
- Contact details of you, the person filling out the form.
- Section 2
- Service Provider 1 is Adyen.
- Service Provider 2 is Apaleo. Description of Service is “Merchant Services,” "Partner/Reseller," or “Other” (in C-TV form).
- Section 3
- You need to tick all the boxes (the circle on the right next to the text).
- PCI file
- All values are filled in automatically after you’ve updated Sections 1 & 2.
- Section 1
- Submit the form. You will receive a copy of it by email. Adyen will be notified automatically, so you don’t have to upload the file in the last step of the KYC form.
Definitions
PCI DSS stands for “Payment Card Industry Data Security Standard” and is a standard used to handle credit cards from major card brands. The standard is administered by the Payment Card Industry Security Standards Council, and its use is mandated by the card brands.
MOTO transactions include entering cardholder data in Apaleo and using the Payment Account for payments. Payment Accounts are usually created through reservations with the guarantee type credit card.
SAQ C-TV
As an Adyen user, you are required to be compliant with the Payment Card Industry Data Security Standard (PCI DSS) regulations. To accept card payments, your company must always be PCI DSS compliant. You must validate your compliance every year by completing an official PCI DSS document. To accept card payments from shoppers providing their cardholder data through a mail/telephone order (MOTO), followed by you manually entering the cardholder data into an ECOM payment environment—Virtual Terminal, you are obliged to complete an SAQ C-TV.
SAQ A
As an Adyen user, you are required to be in compliance with the Payment Card Industry Data Security Standard (PCI DSS) regulations. Please make sure that the name of the Platform (Apaleo) you are using is reflected in Section 2F. PCI documentation requires annual renewal.