If the application involves your buyers to enter their information on their very own equipment, Then you definately qualify for SAQ A. PCI DSS compliance is the process of adhering into a list of controls and requirements for securing physical and on the net economical transactions. Direct API SAQ D https://www.nathanlabsadvisory.com/faq.html
