Attached to this are the following:


  • SAQ:  Official PCI checklist showing compliance with all requirements
  • Scan:  One of the items in the checklist to document external vulnerabilities
  • Incident Response Plan:  Used in a breach