Should your application requires your customers to enter their info on their own equipment, Then you certainly qualify for SAQ A. Formally attest your compliance. An AOC (attestation of compliance) is the shape you employ to signal that you simply’ve achieved PCI DSS compliance. Ending your questionnaire with no “Erroneous” https://www.nathanlabsadvisory.com/application-security-testing.html
