Thank you for raising this important point about PCI compliance, @Stacybephotography. While QuickBooks Payments provides a secure and compliant platform for transaction processing, it's important to understand that businesses are still responsible for maintaining their own PCI compliance. Let me break this down further to explain why additional steps may be required, even when using a secure third-party service like QuickBooks.
Using QuickBooks Payments services does not automatically make your business PCI compliant. While QuickBooks ensures its own systems are secure and PCI compliant, your overall compliance can still be affected by other applications or systems on your computer or network. Additional steps may be required on your part to ensure full compliance with PCI standards.
All merchants that accept credit or debit cards must comply with PCI DSS standards. Your payment methods and annual transaction volume determine your validation requirements. Every merchant must complete a Self-Assessment Questionnaire (SAQ), depending on how they handle card data.
Intuit has partnered with SecurityMetrics, a leading PCI compliance service provider, to help you meet the required standards. However, you also have the option to choose a third-party provider outside of QuickBooks to achieve compliance.
PCI compliance is essential for protecting your business and your customers’ payment data. QuickBooks and SecurityMetrics provide helpful tools to assist you, and you can explore additional options as needed. If you have any questions, feel free to leave a comment below
