nelsonm - 5:34 pm on Nov 12, 2012 (gmt 0)
ok, let me see if i got this right.
Your saying that whatever merchant services my client is currently using, that service will tranfer or require my client to follow some restrictions and/or requirements of the PCI rules.
So if the client wants to maintain any part of the their customer's credit card info outside of their current merchant processing method; whether on paper, chalk board or in a sql database, the client will have to comply with applicable PCI rules - correct?
I noticed that my commerical Quickbooks Pro accounting app allows me to store the credit card name, number and exp. date of my customers on my office computer and I'm certainly not going to harden or encrypt my pc.