In contrast, by transferring all card holder data out of your systems, a company eliminates capital expenditures. It’s a simple premise: The less data there is onsite, the less it costs to keep it secure. This will also reduce the complexity of a company’s PCI audit. Because the merchant no longer stores cardholder data, they will be removed from the scope of PCI Requirement 3, reducing the number of questions needed to answer on the audit.
Posted by rlssec