This is correct. Since QB handles all payment information and data storage, they are the ones being required to be PCI compliant in which it says they are in their term. If we do not ever ask for CC info or account info and its all inputted by the customer through QB; my company is NOT required to sign up for any sort of PCI compliance program. How does it make sense that I am not the card processor and only get paid by QB yet somehow QB seems to think I am responsible for being PCI compliant and paying a yearly cost. No sir this is incorrect.
