📝 Overview
The Payment Card Industry Data Security Standard (PCI DSS) is a set of security standards designed to ensure that all companies that accept, process, store, or transmit credit card information maintain a secure environment. As a merchant, completing your annual PCI compliance helps protect your customers' payment data and keeps your account in good standing. Failure to comply can result in additional fees on your merchant statement.
🎥 Video Walkthrough
🔑 Accessing Your PCI Compliance Portal
Your PCI Compliance Portal is supported by Secure Trust and is accessed through your CardPointe Merchant Portal.
Click the arrow to learn how to access your PCI Compliance Portal
Click the arrow to learn how to access your PCI Compliance Portal
Log in to your CardPointe Merchant Portal.
Using your navigation bar at the top, select My Account.
On the Accounts sub-tab, click Not Compliant under PCI Status to open the Secure Trust Portal.
If the link does not open, click on Learn how to get compliant at the top of the page.
🛠️ Completing Your PCI Compliance
Follow the steps below to create your business profile and complete your annual PCI compliance survey through the Secure Trust Portal.
1️⃣ Creating Your Business Profile
Click the arrow to learn how to create your business profile
Click the arrow to learn how to create your business profile
Enter your Contact Email, Contact Name, Mobile Number, and select your Language Preference. If you wish, you can also add an additional contact email.
Once all items are entered, select Next.
On the following page, select Start Business Profile.
On the Before You Begin page, select Next to continue.
On the Pick an Assessment Method page, choose Expert, then select Next to continue.
On the following page, select No for both questions to be sorted into the correct Survey type, then select Next to continue.
For Password Policy, select Yes, then select Next to continue.
It will then ask about Third Party Managed System Service Providers. Select No for the next 3 of these questions.
For the third question not pictured, also select No.
On the "A summary of how and where you handle card payments" section, please answer these questions per your business type:
The first question should be answered with your type of Retail location (e.g., Salon, Spa, Grooming Salon, Recreation Facility, Veterinary Clinic, or Tattoo Salon)
For the second question, enter your type of Card Processing Device (e.g., Clover Flex, Clover Mini, or Clover Compact)
The last question should be answered with what industry you are in (e.g., Spa, Vet, Pet, Salon, Recreation, Tattoo)
2️⃣ Completing Your PCI Questionnaire
Click the arrow to learn how to complete your PCI questionnaire
Click the arrow to learn how to complete your PCI questionnaire
⛔️ Disclaimer: Failure to complete your PCI Compliance within 60 days of your account being approved will result in an additional fee placed on your merchant statement.
After completing these questions, you will be taken to your Secure Trust Portal.
Under Your Business Profile, make sure that SAQ type P2PE is displayed.
Once you have confirmed the correct SAQ type has been selected, click the Begin Step button under the Complete your Security Assessment section.
⚠️ Important Note: If the SAQ type is not P2PE, select Manage, then Re-profile, and follow the steps above under 1️⃣ Creating Your Business Profile to resort your business type to the correct SAQ.
After selecting Begin Step, you will be taken to your Compliance Survey.
Depending on your industry, there will be approximately 15-25 questions.
As you complete questions, they will clear from the form. Your section progress is located on the right of the screen.
You may see a question that asks you to fill in the Completion Date. For your first time completing PCI compliance, please make sure to fill in the current date using the calendar icon and selecting today's date. Make sure to click Finish after selecting the date, then answer any remaining questions.
Please note, to become compliant you will need to answer Yes to each question.
The final step is to confirm your compliance. Under Your Organization Information Details, enter your Title.
Under the section PCI DSS Validation — Merchant Attestation, enter your Title and Name.
Click on the Attestation Section under Information for Submission, then select Confirm your Attestation.
Once confirmed, you will be taken back to the main menu where you will see "You're Compliant."
You can download the Attestation of Compliance (AOC) document by clicking Download AOC from the dashboard once PCI compliance has been completed.
🎉 Note: Congratulations — your survey is complete!
❓ Frequently Asked Questions (FAQs)
Find answers to common questions or additional details that may not be covered in the main instructions.
How often does the PCI survey need to be completed?
Click the arrow to see the answer
Click the arrow to see the answer
Your PCI compliance is applicable for a full calendar year from the date of completion. For example, if the completion date is 1/1/2026, it will expire 1/1/2027 and will need to be resubmitted.
How can I receive a notification when I need to become compliant again?
Click the arrow to see the answer
Click the arrow to see the answer
You can select to receive an email when you become non-compliant again from your notification configuration under your Dashboard.
My SAQ type isn't P2PE — what should I do?
Click the arrow to see the answer
Click the arrow to see the answer
To resort your business profile into the right SAQ, select the Manage button on your business profile section. Follow the guide above, making sure your correct industry and device type have been entered. If you are still sorted incorrectly, please give our support team a call.
What happens if I do not complete my PCI Compliance?
Click the arrow to see the answer
Click the arrow to see the answer
Failure to complete your PCI Compliance within 60 days of your account being approved will result in an additional fee placed on your merchant statement. Please note, refunds for these fees are typically unable to be provided. As always, contact support if you have any issue at all completing your PCI compliance.
💬 Contact Us
Still have questions? Contact us through our live chat option at the bottom right of this article or email us at ✉️ [email protected].






