|
|
|
|
|
|
by einhverfr
5056 days ago
|
|
|
I have spent a fair bit of time reading the PCI standards and I have never seen such a requirement. I suppose it is possible that some sort of independent auditor is making that call but it isn't in the standard anywhere I can see. (Auditors seem to have a huge amount of discretion here.) |
|
|