This is a common misconception about PCI DSS compliancy!
PCI DSS refers to the Pay Card Industry Data Security Standards Council. This is the council that determines the Best Practices for transacting, storing, and handling sensitive credit cardholder data.
Regardless of the method by which you accept credit cards or how large or small your company is, if you transact payment cards, you are responsible for the security of the payment card information!
Please review the following site for up-to-date PCI DSS standards:
Self Assessment Questionnaire (SAQ):
There are multiple versions of the PCI DSS SAQ standards to meet your individual business scenarios. A chart to help you determine which SAQ best applies to you and how to complete the SAQ is included in the