The Payment Card Industry Data Security Standard (PCI DSS) applies to any company of any size. If you wish to accept, process, store card payment data, or already are– through the phone, online, or physical scanning, you are required to be PCI compliant.
In order to achieve and maintain PCI Compliance you must meet specific procedural compliance physically through how you handle credit card data, additionally compliance must be met at your datacenter, and on your servers themselves. Finally, PCI Compliance must be met by the website/application that is processing credit cards.
PCI compliance testing isn’t a one-time exam you prepare for and then pass. It’s an ongoing process. Certain merchant and PCI levels require a third-party penetration test audit every 6 months.
WSM’s PCI service takes care of it for our numerous clients– and for you.