Pci DSS

Kenneth Brody kenbrody at spamcop.net
Wed Sep 18 07:50:42 PDT 2013


On 9/18/2013 12:51 AM, Richard Kreiss wrote:
[...]
> Based on hacking reports, do you really want to trust your sensitive data
> to an outside source.  The banks and credit card companies don't exactly
> have a stellar reputation for protecting card holder information.

But... but... but...  They're PCI/DSS certified!  How could that happen?  :-)

Actually, there is an advantage to you (as the business owner, not the 
customer) in having an outside source retain the data.  If they are broken 
into and have the data stolen, it's not your responsibility, and you won't 
be liable.

NB: IANAL

-- 
Kenneth Brody


More information about the Filepro-list mailing list