Dark Reading reports that with PCI DSS 4.0.1 now in effect, merchants can no longer assume third-party service providers carry the full burden of compliance. In the article, Josh Davies highlights how organizations should work closely with providers to understand their shared responsibilities:
Originally published in Dark Reading.
Excerpt: "4.0 emphasized its focus on third-party service providers, recognizing the efficiencies businesses gain from outsourcing while also making it clear that you cannot outsource responsibility.”
