>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

12.9.2Additional requirement for service providers only: TPSPs support their customers’ requests for information to meet Requirements 12.

>Requirement Description

Additional requirement for service providers only: TPSPs support their customers’ requests for information to meet Requirements 12.8.4 and 12.8.5 by providing the following upon customer request: PCI DSS compliance status information (Requirement 12.8.4). Information about which PCI DSS requirements are the responsibility of the TPSP and which are the responsibility of the customer, including any shared responsibilities (Requirement 12.8.5), for any service the TPSP provides that meets a PCI DSS requirement(s) on behalf of customers or that can impact security of customers’ cardholder data and/or sensitive authentication data. Applicability Notes This requirement applies only when the entity being assessed is a service provider.

>Cross-Framework Mappings

NIST CSF 2.0

via NIST OLIR Catalog
GV.OC-02
Compare
GV.OC-03
Compare
GV.OC-05
Compare
GV.RM-05
Compare
GV.SC-01
Compare
GV.SC-05
Compare
GV.SC-07
Compare

SCF

TPM-01
Compare
TPM-04
Compare
TPM-05
Compare
TPM-05.4
Compare

Ask AI

Configure your API key to use AI features.