{"id":1519,"date":"2023-10-30T13:45:09","date_gmt":"2023-10-30T12:45:09","guid":{"rendered":"https:\/\/pcihispano.com\/?p=1519"},"modified":"2026-05-06T19:16:15","modified_gmt":"2026-05-06T17:16:15","slug":"visa-informa-que-su-programa-de-seguridad-del-pin-finalizo-el-1-de-octubre-de-2023","status":"publish","type":"post","link":"https:\/\/www.pcihispano.com\/en\/visa-informa-que-su-programa-de-seguridad-del-pin-finalizo-el-1-de-octubre-de-2023\/","title":{"rendered":"Visa reports that its PIN security programme ended on 1 October 2023"},"content":{"rendered":"<p><span class=\"intro-text\">In a decision that has taken the entire payment media ecosystem by surprise, Visa announced its PIN Security program.<em>Visa PIN Security Program<\/em>) ended on 1 October 2023.<\/span><\/p>\n<p>In a brief <a href=\"https:\/\/usa.visa.com\/content\/dam\/VCOM\/global\/partner-with-us\/documents\/visa-pin-program-memo.pdf\" target=\"_blank\" rel=\"noopener\">statement<\/a> recently published in its <a href=\"https:\/\/usa.visa.com\/partner-with-us\/info-for-partners\/pin-security.html\" target=\"_blank\" rel=\"noopener\">corporate website<\/a>, <strong>Visa<\/strong> announced that, <span class=\"highlight\">from 1 October 2023, its <a href=\"https:\/\/pcihispano.com\/wp-content\/uploads\/2023\/10\/visa-pin-security-program-guide-public.pdf\" target=\"_blank\" rel=\"noopener\">PIN Security Program<\/a> (<em>Visa PIN Security Program<\/em>) ceased to be active.<\/span> Visa argues that this decision was made to allow it to focus its efforts on other more critical risks to the payments ecosystem.<span class=\"highlight\"><br \/>\n<\/span><\/p>\n<p>To understand the impact of this news, it is important to distinguish between the standard <a href=\"https:\/\/www.pcihispano.com\/en\/que-es-pci-pin\/\" target=\"_blank\" rel=\"noopener\">PCI PIN<\/a> and the payment mark security programme (in this case Visa):<\/p>\n<ul>\n<li>On the one hand, the standard <a href=\"https:\/\/www.pcihispano.com\/en\/que-es-pci-pin\/\" target=\"_blank\" rel=\"noopener\">PCI PIN<\/a> defines the security controls to be implemented for the secure management, processing and transmission of the Personal Identification Number (PIN) during payment transactions at ATMs and payment point terminals (POS).<\/li>\n<li>On the other hand, the security programs of each payment brand establish which entities are subject to the evaluation of these controls, the periodicity of these evaluations and the potential fines in case of non-compliance and security incidents, among other points of an administrative nature.<\/li>\n<\/ul>\n<p>With the completion of the <a href=\"https:\/\/pcihispano.com\/wp-content\/uploads\/2023\/10\/visa-pin-security-program-guide-public.pdf\" target=\"_blank\" rel=\"noopener\">Visa PIN Security Program<\/a>, the following activities shall no longer be mandatory:<\/p>\n<ul>\n<li>Already <strong>it will not be mandatory to report PCI PIN compliance to Visa<\/strong> by the entities. Therefore, once the PCI PIN evaluation has been completed, we will already need the entity to send the compliance documents (<em>Attestation of Compliance<\/em> \u2013 PCI PIN AoV) to Visa, as was previously the case.<\/li>\n<li><strong>Visa will no longer maintain the list of validated entities in PCI PIN<\/strong> in your list<em>ado of service providers (<a href=\"https:\/\/www.visa.com\/splisting\/searchGrsp.do\" target=\"_blank\" rel=\"noopener\">Visa Global Registry of Service Providers<\/a>). <\/em><\/li>\n<li>The restriction of changing advisory company<em> (<\/em><a href=\"https:\/\/listings.pcisecuritystandards.org\/assessors_and_solutions\/qpa_assessors\" target=\"_blank\" rel=\"noopener\"><em>Qualified PIN Assessor Company<\/em><\/a> \u2013 QPAC) after two (2) simultaneous compliance assessments is no longer mandatory.<\/li>\n<li>Expiration dates of point-of-interaction devices (<em>Point-of-Interaction<\/em> \u2013 POI) will be defined by the PCI PTS POI programme and by the PCI PIN standard controls. Visa will no longer establish the periods of use, replacement and removal of such devices.<\/li>\n<\/ul>\n<p>However, the following points shall remain in force after 1 October 2023:<\/p>\n<ul>\n<li>PCI PIN compliance assessments are still needed. In this regard, such assessments should continue to be carried out by a qualified safety adviser (<em>Qualified PIN Advisor \u2013 <\/em>QPA) and the use of self-assessment questionnaires is not allowed.<\/li>\n<li>The period of validity of the PCI PIN evaluation will continue to be 24 months.<\/li>\n<li>Fines in case of non-compliance will remain applicable, in accordance with the documents <a href=\"https:\/\/www.visa.es\/asistencia-visa\/consumidor\/visa-rules.html\" target=\"_blank\" rel=\"noopener\"><em>Visa Core Rules<\/em> y <em>Visa Product and Service Rules<\/em><\/a>.<\/li>\n<\/ul>\n<p>The completion of this program leaves the payment community with many questions about the responsibility of compliance management, since without a centralizing entity of the process (such as payment brands) and without the existence of a list of validated entities, as well as the absence of applicability criteria, compliance with PCI PIN could be affected in the future.<\/p>\n<p>At the moment, the <em>Payment Card Industry Security Standards Council<\/em> (PCI SSC) has not commented on it and it is very likely that other payment brands that are part of the PCI SSC (including <a href=\"https:\/\/www.mastercard.com\/globalrisk\/en\/resources\/pci360.html\" target=\"_blank\" rel=\"noopener\">MasterCard<\/a>) make the same decision to abandon their PIN compliance programmes in the short term.<\/p>\n<p>It is necessary to clarify that those entities that have already been or are being evaluated by a QPA must continue with their periodic validation processes in a normal way, without there being any affectation with this announcement.<\/p>","protected":false},"excerpt":{"rendered":"<p>In a decision that has taken the entire payment media ecosystem by surprise, Visa announced that its Visa PIN Security Program ended on October 1, 2023. In a brief statement [\u2026]<\/p>","protected":false},"author":2,"featured_media":1527,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_post_was_ever_published":false},"categories":[54,330],"tags":[138,66,127,137,139,61],"class_list":["post-1519","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-noticias","category-pci-pin","tag-guide","tag-pci-ssc","tag-pin","tag-program","tag-sunset","tag-visa"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/10\/Visa_Program_october.png?fit=1914%2C1078&ssl=1","jetpack-related-posts":[{"id":753,"url":"https:\/\/www.pcihispano.com\/en\/que-es-pci-pin\/","url_meta":{"origin":1519,"position":0},"title":"\u00bfQu\u00e9 es PCI PIN?","author":"David Acosta","date":"enero 25, 2023","format":false,"excerpt":"En este nuevo art\u00edculo de la serie \u00bfQu\u00e9 es? se realizar\u00e1 una breve introducci\u00f3n al est\u00e1ndar Payment Card Industry (PCI) PIN Security (PCI PIN), focalizado en la protecci\u00f3n del n\u00famero de identificaci\u00f3n personal (PIN) en transacciones presenciales. Introducci\u00f3n El est\u00e1ndar Payment Card Industry (PCI) PIN Security (o PCI PIN) es\u2026","rel":"","context":"In &quot;PCI PIN&quot;","block_context":{"text":"PCI PIN","link":"https:\/\/www.pcihispano.com\/en\/category\/pci-pin\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/01\/PCI_PIN.png?fit=1200%2C674&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/01\/PCI_PIN.png?fit=1200%2C674&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/01\/PCI_PIN.png?fit=1200%2C674&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/01\/PCI_PIN.png?fit=1200%2C674&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2023\/01\/PCI_PIN.png?fit=1200%2C674&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":6640,"url":"https:\/\/www.pcihispano.com\/en\/pci-ssc-pin-listing-program-todo-lo-que-necesitas-saber\/","url_meta":{"origin":1519,"position":1},"title":"PCI SSC PIN Listing Program: Todo lo que necesitas saber","author":"David Acosta","date":"mayo 20, 2025","format":false,"excerpt":"En mayo de 2025 el PCI SSC anunci\u00f3 la publicaci\u00f3n de un listado de entidades que cumplen con el est\u00e1ndar PCI PIN. Dicho listado - a diferencia de los listados anteriores que eran gestionados por las propias marcas de pago, como era el caso de VISA PIN - ser\u00e1 gestionado\u2026","rel":"","context":"In &quot;Noticias&quot;","block_context":{"text":"Noticias","link":"https:\/\/www.pcihispano.com\/en\/category\/noticias\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/05\/PINPAD.png?fit=1200%2C675&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/05\/PINPAD.png?fit=1200%2C675&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/05\/PINPAD.png?fit=1200%2C675&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/05\/PINPAD.png?fit=1200%2C675&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/05\/PINPAD.png?fit=1200%2C675&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":288,"url":"https:\/\/www.pcihispano.com\/en\/fechas-importantes\/","url_meta":{"origin":1519,"position":2},"title":"Fechas importantes","author":"David Acosta","date":"enero 24, 2023","format":"quote","excerpt":"Fechas importantes: Octubre 1, 2023: El programa Visa PIN ha sido retirado. Enero 1, 2024: Cambia el proceso de carga de claves por componentes en PCI PIN Marzo 31, 2024: El est\u00e1ndar PCI DSS v3.2.1 ser\u00e1 retirado y la versi\u00f3n 4.0 entrar\u00e1 totalmente en vigor. Enero 1, 2025: Fecha final\u2026","rel":"","context":"In &quot;Noticias&quot;","block_context":{"text":"Noticias","link":"https:\/\/www.pcihispano.com\/en\/category\/noticias\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/08\/pexels-olya-kobruseva-5386754-scaled.jpg?fit=1200%2C801&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/08\/pexels-olya-kobruseva-5386754-scaled.jpg?fit=1200%2C801&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/08\/pexels-olya-kobruseva-5386754-scaled.jpg?fit=1200%2C801&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/08\/pexels-olya-kobruseva-5386754-scaled.jpg?fit=1200%2C801&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/08\/pexels-olya-kobruseva-5386754-scaled.jpg?fit=1200%2C801&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":11498,"url":"https:\/\/www.pcihispano.com\/en\/que-es-pci-3ds\/","url_meta":{"origin":1519,"position":3},"title":"\u00bfQu\u00e9 es PCI 3DS?","author":"David Acosta","date":"febrero 26, 2026","format":false,"excerpt":"En este art\u00edculo se presenta una breve descripci\u00f3n del est\u00e1ndar PCI 3DS, orientado a la protecci\u00f3n de las transacciones no presenciales (card-not-present) de comercio electr\u00f3nico a trav\u00e9s de la autenticaci\u00f3n robusta del titular de tarjeta. Introducci\u00f3n El est\u00e1ndar\u00a0Payment Card Industry 3-D Secure \u2013 Security Requirements and Assessment Procedures for EMV\u00ae\u2026","rel":"","context":"In &quot;PCI 3DS&quot;","block_context":{"text":"PCI 3DS","link":"https:\/\/www.pcihispano.com\/en\/category\/pci-3ds\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2026\/02\/shopping_cart.png?fit=1200%2C674&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2026\/02\/shopping_cart.png?fit=1200%2C674&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2026\/02\/shopping_cart.png?fit=1200%2C674&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2026\/02\/shopping_cart.png?fit=1200%2C674&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2026\/02\/shopping_cart.png?fit=1200%2C674&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":9929,"url":"https:\/\/www.pcihispano.com\/en\/el-programa-ais-de-visa-ya-no-incluye-el-nivel-4-para-comercios\/","url_meta":{"origin":1519,"position":4},"title":"El programa AIS de Visa ya no incluye el nivel 4 para comercios","author":"David Acosta","date":"noviembre 27, 2025","format":false,"excerpt":"El programa Account Information Security (AIS) de Visa ha sufrido cambios importantes, lo que modifica los criterios de clasificaci\u00f3n de comerciantes para reportar su cumplimiento con el est\u00e1ndar PCI DSS. Este programa define los requisitos aplicables con base en el n\u00famero de transacciones de tarjetas procesadas anualmente, en donde se\u2026","rel":"","context":"In &quot;Noticias&quot;","block_context":{"text":"Noticias","link":"https:\/\/www.pcihispano.com\/en\/category\/noticias\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/11\/VISA_card.png?fit=1200%2C674&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/11\/VISA_card.png?fit=1200%2C674&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/11\/VISA_card.png?fit=1200%2C674&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/11\/VISA_card.png?fit=1200%2C674&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2025\/11\/VISA_card.png?fit=1200%2C674&ssl=1&resize=1050%2C600 3x"},"classes":[]},{"id":554,"url":"https:\/\/www.pcihispano.com\/en\/que-es-pci-ssf-pci-secure-slc-pci-s3\/","url_meta":{"origin":1519,"position":5},"title":"\u00bfQu\u00e9 es PCI SSF \/ PCI Secure SLC \/ PCI S3?","author":"David Acosta","date":"enero 27, 2026","format":false,"excerpt":"En este nuevo art\u00edculo se presenta una breve introducci\u00f3n al Marco de Seguridad de Software o PCI SSF (Payment Card Industry Software Security Framework), que remplaz\u00f3 al est\u00e1ndar PA-DSS (Payment Applications Data Security Standard) en octubre de 2022. Introducci\u00f3n Uno de los objetivos m\u00e1s f\u00e1ciles de atacar por un ciberdelincuente\u2026","rel":"","context":"In &quot;PCI SSF&quot;","block_context":{"text":"PCI SSF","link":"https:\/\/www.pcihispano.com\/en\/category\/pci-ssf\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/11\/ssf.png?fit=1200%2C674&ssl=1&resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/11\/ssf.png?fit=1200%2C674&ssl=1&resize=350%2C200 1x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/11\/ssf.png?fit=1200%2C674&ssl=1&resize=525%2C300 1.5x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/11\/ssf.png?fit=1200%2C674&ssl=1&resize=700%2C400 2x, https:\/\/i0.wp.com\/www.pcihispano.com\/wp-content\/uploads\/2022\/11\/ssf.png?fit=1200%2C674&ssl=1&resize=1050%2C600 3x"},"classes":[]}],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/posts\/1519","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/comments?post=1519"}],"version-history":[{"count":1,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/posts\/1519\/revisions"}],"predecessor-version":[{"id":11738,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/posts\/1519\/revisions\/11738"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/media\/1527"}],"wp:attachment":[{"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/media?parent=1519"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/categories?post=1519"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.pcihispano.com\/en\/wp-json\/wp\/v2\/tags?post=1519"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}