M1 – We are relatively small company so we don’t have to worry about PCI compliance
F1 – The PCI DSS must be met by all organizations that transmit, process or store payment card data
M2 – PCI DSS is either a regulation or a standard
F2 – It‘s a neither a standard nor a regulation. It is [...]