Merchants are encouraged to be PCI compliant to safeguard sensitive payment card data accessed through their accounts. Let me elaborate on this, @bizpro1.

While it's true that you don't directly handle payment card data,  accessing your merchant account means managing sensitive transaction information, like charges and refunds. As a merchant, it’s essential to protect this data, which makes PCI compliance crucial.

Additionally, any device you use to access QuickBooks or your merchant accounts can be a potential vulnerability. If security is compromised, it could expose sensitive information about your business and customers.

Being PCI compliant ensures you have the proper safeguards and response plans to protect against breaches. For further details, please check this article: Learn about QuickBooks PCI Compliance.

I'll be including these articles to assist you in safeguarding your business account and data from fraudulent activities:

• Data Security and Fraud Prevention.
• Identify Suspicious Activity, Phishing Scams, and Potential Fraud.

If you have any questions about PCI DSS or any other QuickBooks-related topics, feel free to Reply below. I'm here to help!

@bizpro1  It's funny that you say I miss the point, then immediately imply I said something that I did not.

Maybe try reading it again.

You are exactly correct. PCI compliance in QBO is on Intuit period.

Spot On!

Dfrmseattle

We just hassled them about charging for PCI compliance and this is the response we got:
This is to informed you that PCI Compliance is not required by Intuit. We just strongly advises that our account holders/merchants to be PCI Compliant. Intuit is compelled to send out notifications to the merchants about it.
Intuit does not charge for PCI Compliance thus, we will not invoke penalties if you are not a PCI Compliant.

I would ask if Chat GBT created that response you got, but it would have had proper grammar. What the heck is going on w Intuit??? 

"

lease see my other responses and posts. You can also look me up on LinkedIn.
In response to your question: I use an iPad with QuickBooks online - can you name one item of data on the iPad relating to the client payments?

1. Your browser may not be up to date. Although you are online w/QuickBooks, there could be malicious code in an outdated browser.

2. If the iPad is used for personal use. The apps you are running may impact your apps for work, such as QuickBooks. Again, if other apps are not PCI Compliant and run in your environment, they affect your data. They and you are responsible. The number one rule of PCI that many people need to learn is that you, as a business owner, are responsible for ensuring that the providers you engage with are PCI-compliant.

3. PCI is not just about storing the clients data, it is how it is handled and the environment and how that is impacted and or accessed. "

Counter point: Therefore, since all your customers pay with devices through the QuickBooks servers, they all need to be PCI as well.

LMFAO... no wonder we are in bad shape in America.