SAQ Validation Type 1 / SAQ A

Yes

No

Your company handles only card-not-present
(e-commerce or mail/telephone-order) transactions.

Yes

No

Your company does not store, process, or transmit any cardholder data on your premises, but relies entirely on a third party to handle these functions.

Yes

No

Your company has confirmed that the third party handling storage, processing, and/or transmission of cardholder data is PCI DSS compliant.

Yes

No

Your company retains only paper reports or receipts with cardholder data, and these documents are not received electronically.

Yes

No

Your company does not store any cardholder data in electronic format.