@JonoSC 

I understand your frustration and have dealt with this for close to 20 years as I was an agent in the merchant services field. I worked closely with merchants of all sizes to help them understand the importance of PCI compliance and why it is critical. PCI stands for Payment Card Industry Data Security Standards. Anyone who stores, processes, or transmits cardholder data is responsible for being compliant. Quickbooks is PCI Level 1 Compliant.

However, as a merchant using their services, you agreed to the terms and conditions of their agreement, stating that you would also uphold and meet those requirements. Stripe is no different, as they state the same thing. In short, PCI stands for “Protecting Customers Information,” and it is a “shared responsibility” between you and the provider. 

“Without the protection that PCI Compliance brings, your business could be vulnerable to costly attacks and data breaches.” Don’t think for a minute that you don’t have data that someone wants. It is law in a few states, depending on where you do business. 
You can always refer to the PCI Security Standards website for free information: PCI Security Standards Document Library 
“What You Need to Know about PCI 3.2.1 to 4.0 Transition” 
Stripe Security Guide 
You cannot inherit PCI Compliance from a provider. The industry has done a lousy job of educating people about it. That’s why we are trying to change that and make it easier for merchants like you to do.