Skip to main content

PCI PIN Services

Securing PIN data during card present transactions

Speak with an Expert

Throughout the processing of online and offline payment card transactions at ATMs and POS terminals, the management, processing and transmission of personal identification number (PIN) data must meet the security requirements as explicitly instructed by PCI.

As mandated, acquirers must keep a summary listing of the cryptographic keys used for the acquiring and processing of PIN data including keys used by POI devices, HSMs, etc. UL performs physical, logical as well as IP protocol and secure data encryption assessments of these devices.

UL is a PCI SSC Qualified PIN Assessor (QPA) company.


Depending on your role in the payment ecosystem, you may need to comply to more than one PCI program. As the sole security industry expert offering the most number of PCI services globally, UL helps you simplify all of your PCI compliance needs for a cohesive risk management program.

UL is also the only Approved Application Scanning Validator (ASVV) and Consumer Electronic Clearing System Approved Evaluation Facility.