PCI PTS POI V4 Device Expiry Extended


On Dec. 9, PCI extended expiry date for PCI PTS POI V4 devices.


  • PCI extended PIN transaction security point-of-interaction (PTS POI) V4 device expiry. Follows PCI Jun. 2020, issued PTS POI standard v6.0 device security, see #79842.
  • Summary
  • Following industry feedback in relation to global supply-chain disruptions, the date for PTS POI V4 devices is now extended by 1 year from Apr. 30, 2023 to Apr. 30, 2024.
  • Vendors with POI v4 listing will be advised directly regarding additional year’s listing.
  • Countries/entities not impacted by supply chain issues should use/deploy next generation solutions such as existing PTS POI v5 or v6 approved devices.
  • While earlier POI device versions may be less robust against newer attacks, does not believe 1-year extension of approval expiry date will materially impact risk.
  • Merchants, financial institutions, vendors, other PTS POI v4 device users, to contact their device vendors regarding more recently approved models to use in replacement.
  • This specifically applies to: v4 PEDs (PIN entry devices); EPPs (encrypting PIN pads); UPTs (unattended payment terminal); plus SCRs (secure card readers).
  • Effectiveness
  • Expiry is extended by 1 year to Apr. 30, 2024.

Regulators PCI
Entity Types MSB
Reference PR, 12/9/2022
Functions Compliance; Cyber; Legal; Operations; Privacy; Risk; Settlement; Technology
Countries Global Regulator
Category
State
Products Cards; Payments
Regions Global
Rule Type Final
Rule Date 12/9/2022
Effective Date 4/30/2024
Rule Id 156182
Linked to N/A
Reg. Last Update 12/9/2022
Report Section International

Last substantive update on 12/13/2022