Who should I send PCI compliance-related material to in QuickBooks and/or Intuit? Is there a specific contact I should send this material to?

Good day to you, David. I'm here to provide additional details about your QuickBooks Payment Card Industry (PCI) compliance concern.

Since you are already PCI-compliant outside Intuit, you don't need to be compliant with Intuit for as long as cardholder information and authentication data are protected.

That said, you don't need to submit the certification to us, as Intuit does not require proof of PCI compliance at this time. You can keep it since we don’t need to retain this on our side unless you have had a breach or

Common Point of Purchase inquiry.

In case you want to comply with us, you can refer to these resources that answer frequently asked questions about the partnership between Intuit and SecurityMetrics for the PCI compliance process:

• Learn about QuickBooks PCI Compliance
• Learn about the PCI DSS Compliance Services

Don't hesitate to click the Reply button below if you have further questions or concerns about PCI compliance. We're always looking forward to assisting you. Stay safe always!

Are you saying that I don't need PCI Compliance through Intuit because I am compliant with another company? Especially when we don't handle any sensitive information in Intuit like credit card/debit card information.

Hi, MI. Yes, you don’t need separate PCI compliance through Intuit. Just keep using your current PCI provider. PCI compliance is about the overall security of your business when handling sensitive card data, rather than being tied to any specific software. Your existing PCI validation is your proof that your business is secure.

You can revisit this thread if you have follow-up questions.