As Component of PCI details security expectations, physical cardholder info must even be saved in a very secure spot, like a locked area or storage region with restricted accessibility. SOC compliance is created to establish to the service provider’s customers that an organization can provide the services that it's contracted https://www.nathanlabsadvisory.com/blog/tag/security-culture/
