AOC (Attestation of Compliance)

AOC stands for "Attestation of Compliance," a crucial document used by merchants and service providers to confirm their adherence to the requirements of the PCI DSS (Payment Card Industry Data Security Standard). This form is an essential part of both the Self-Assessment Questionnaire and the Report on Compliance processes. The AOC provides a summary that attests to the results of a PCI DSS assessment, verifying that all standards have been met or identifying any areas requiring improvement. It serves as proof of compliance, ensuring that a merchant or service provider meets the necessary security standards to protect cardholder data against theft and fraud. This document is vital for maintaining trust between merchants, service providers, payment brands, and financial institutions in the payment ecosystem.