Pci DSS
Kenneth Brody
kenbrody at spamcop.net
Wed Sep 18 07:50:42 PDT 2013
On 9/18/2013 12:51 AM, Richard Kreiss wrote:
[...]
> Based on hacking reports, do you really want to trust your sensitive data
> to an outside source. The banks and credit card companies don't exactly
> have a stellar reputation for protecting card holder information.
But... but... but... They're PCI/DSS certified! How could that happen? :-)
Actually, there is an advantage to you (as the business owner, not the
customer) in having an outside source retain the data. If they are broken
into and have the data stolen, it's not your responsibility, and you won't
be liable.
NB: IANAL
--
Kenneth Brody
More information about the Filepro-list
mailing list