22Mar
PCI DSS non-compliance – who was on the receiving end of fines? [closed]
AviD's Law of Compliance: "PCI compliance reduces the risk of the penalties of non-compliance"
Has anybody here ever been fined for non-compliance or has first-hand experience with a finee? As in: non-compliance not as an aggravating factor in a fine regarding a data breach, but as a stand-alone fined offence? Can you give a breakdown of the steps involved (i.e. how long between first contact with processor/[fine-laying entity] and fine, what requirements were breached, etc)
