PCI Scope & SAQ Estimator

Ready? Start the estimator below.

Free PCI starting point

PCI Scope & SAQ Estimator

Answer a few questions about how you accept payments and get a practical starting point for your likely PCI validation path.

This is a practical estimate, not an official determination from your acquirer, processor, payment brand, QSA, or ISA.
Step 1 of 5

How do you accept card payments?

Select every channel that applies. Mixed channels often create the first scope surprise.

Step 2 of 5

How does your website handle payment?

This is where many ecommerce PCI surprises start.

Do analytics, pixels, tag managers, chat widgets, plugins, or other third-party scripts run on or near checkout?
Can you currently list the scripts, iframes, and third-party hosts on your payment page?
Step 3 of 5

What happens to card data?

These answers can quickly expand PCI scope.

Do you electronically store cardholder data on your systems?
Do staff manually type card numbers into a browser-based virtual terminal?
Are you using a PCI-listed validated P2PE solution?
Are payment devices/systems segmented from the rest of your business network?
Step 4 of 5

Any processor or compliance direction?

If your acquirer or processor already told you what to complete, use that as the starting authority.

Step 5 of 5

Optional context for a better recommendation

These answers help Squirrel route the result toward the right next step.

Important: This estimator is educational and uses simplified decision logic. PCI SAQ eligibility depends on the full environment, payment channels, service-provider responsibilities, and the requirements of your acquirer, processor, payment brand, QSA, or ISA.
Powered by Squirrel PCI