These instructions don't work at all for QB Desktop.  Can you provide the directions for Desktop so we can provide our current PCI compliance that was not done with Security Metrics?  Believe it or not, there are other companies that do PCI compliance for less that Security Metrics.  I just want to update our QB profile so we no longer get the non-compliance threatening emails on this subject.  

Let me route you to the best support who can update your QuickBooks profile for PCI Compliance, Anne16720.

Since you already have PCI Compliance services with a company other than SecurityMetrics, I recommend contacting our Merchant Services team to provide this information. Please see the QuickBooks Desktop with Payments section in this article on how to do so: Contact Payments Support.

Additionally, if you wish to learn more about PCI DSS Compliance Services, check out this article: Payment Card Industry Data Security Standard Compliance Services.

We'll be glad to have you back in the Community if you have other PCI Compliance concerns or issues about managing payment transactions in QuickBooks Desktop. Just click the Reply button, and we'll be ready to help you.

I followed the link you provided with a contact phone number of 800-446-8848.  I am now on hold for over 10 minutes.  Now I am told I have to be transferred to Merchant Services....still on hold.  This is why I resisted contacting anyone about this.  You guys are seriously wasting my time. 

Total garbage.  After 35 minutes on the phone the best answer is for me is to ignore these messages.  This is not right. 

If QB is reporting their customers to their partner "Security Metrics" as not compliant - then you need to find a way that we can assert our compliance and stop the shake down emails.   This is meant to confuse and scare folks who do not know much about PCI compliance. Plus every email is from a noreply address. 

Here are the exact words in the email sent by Security Metrics.  

We are Intuit's PCI Compliance partner. You should have received an email recently from Intuit regarding this matter.

and in bold type --> Currently you are not being reported as "Compliant", but we can help with that.

This scenario is for taking payments from an e-mailed invoice FROM QUICKBOOKS to the QUICKBOOKS servers for payment: (Their email system; their host)

The answers QB employees have posted here are AMBIGIOUS as it can get. They state that if you use their "Quickbooks CC payment" plan you need to be PCI. Every answer here has been side stepping the actual question: If my customers only pay for invoices through YOUR QB web site why do I need to be complaint?

Since no customer Credit Card information is being taken by any other DEVICE besides QB web server.

It absolutely makes NO SENSE to be PCI compliant for this scenario. 

So in the case of any device touching their server, that would mean EVERY CUSTOMER whom uses ANY DEVICE to contact the QB server would have to be PCI certified. See? Makes absolutely no sense. The LIABILITY of security is 100% on QB. So if they are speaking PURELY of their Credit Card payment processon their site, then go with 3rd party vendors such as PAYPAL and STRIPE and SQUARE, whom you do NOT have to be PCI compliant to use.

This scare tactic is going to cost them as I turned OFF their CC payment systems and activated 3rd party ones ON the QB site. Meaning, all transactions go through vendors that are NOT applying penalty fees for non-compliance. The best method now is to STOP all QB payment processes and let them feel the heat for this scam. No more taking a percentage of the money I EARN for NOTHING. TURN OFF QB CC PROCESSING NOW.