PracticeQ Payments: SAQ A Instructions

If your clients provide card details online via the portal, forms, invoices, or your booking system, your practice needs to complete the SAQ A for PCI compliance.

Click Next under Step 1 Information.

Step 1

Here is how to answer the questions in Step 1:

E-commerce
I have a website that I sell goods or services on and/or accept payments online
It is hosted and managed by a PCI Compliant provider
When credit card data is collected, it is collected on a PCI DSS validated third party website.
For questions 5 through 9, please double-check your own operations, but in general these should be No.

Step 2

Once you have completed Step 1, you will be assigned a Step 2 questionnaire, which should be the SAQ A.
If you are confident that you do not hold cardholder data outside of PracticeQ, you can answer Yes to all the questions in Step 2. Any card data you collect via PracticeQ is stored with the payment processor and is within the standards of the industry.

Step 3

The SAQ A requires a vulnerability scan.
Read here for more information on this step: PracticeQ Payments: PCI Vulnerability Scan.

Step 4

Step 4 should not be required for the SAQ A.

Step 5

Submit your attestation for compliance.
- Once you submit your attestation, your SAQ Status should update to Confirmed!

Ongoing Tasks

Each user will be assigned several ongoing tasks. These tasks are future dated to keep compliance and security on your mind throughout the year, until you re-attest to compliance in 12 months.
Simply click and confirm to complete them whenever you choose.

Questions?

The PCI Compliance toolkit includes technical language and standards that most of our users are unfamiliar with. Please do not hesitate to reach out to us at hello@intakeq.com if you have any questions. We will be happy to assist you in gaining compliance successfully!

Still need help? Contact Us Contact Us

Last updated on August 20, 2025