If one sells ecommerce software, do you HAVE to be PCI compliant at this point?
I read it costs upwards of 40K to get your ecomm software PCI compliant.
And some of the requirements have things like source code review, which means that your company is larger than 1.
Any thoughts on this?
I guess this industry is locked from 1-man operations?