{"id":4955,"date":"2021-07-28T09:00:00","date_gmt":"2021-07-28T07:00:00","guid":{"rendered":"http:\/\/dev1.replior.mobi\/?p=4955"},"modified":"2026-04-20T22:58:41","modified_gmt":"2026-04-20T20:58:41","slug":"pci-dss-compliance-cant-be-bought","status":"publish","type":"post","link":"https:\/\/complior.se\/en\/pci-dss-compliance-cant-be-bought\/","title":{"rendered":"PCI DSS Compliance can&#8217;t be bought"},"content":{"rendered":"<div class=\"wp-block-uagb-container uagb-block-1c95cc62 alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div class=\"wp-block-group blockera-block blockera-block-627ud4 is-vertical is-layout-flex wp-container-core-group-is-layout-fe9cc265 wp-block-group-is-layout-flex\">\n<div class=\"wp-block-kadence-advancedbtn kb-buttons-wrap kb-btns4955_1823ce-eb\"><a class=\"kb-button kt-button button kb-btn4955_e8d060-58 kt-btn-size-standard kt-btn-width-type-auto kb-btn-global-fill  kt-btn-has-text-true kt-btn-has-svg-true  wp-block-kadence-singlebtn\" href=\"https:\/\/complior.se\/en\/resources\/\"><span class=\"kb-svg-icon-wrap kb-svg-icon-fe_arrowLeft kt-btn-icon-side-left\"><svg viewbox=\"0 0 24 24\"  fill=\"none\" stroke=\"currentColor\" stroke-width=\"2\" stroke-linecap=\"round\" stroke-linejoin=\"round\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"  aria-hidden=\"true\"><line x1=\"19\" y1=\"12\" x2=\"5\" y2=\"12\"\/><polyline points=\"12 19 5 12 12 5\"\/><\/svg><\/span><span class=\"kt-btn-inner-text\">Tillbaka till resurser<\/span><\/a><\/div>\n\n\n\n<span class=\"kt-adv-heading4955_195708-df wp-block-kadence-advancedheading\" data-kb-block=\"kb-adv-heading4955_195708-df\">Blog<\/span>\n\n\n\n<h1 class=\"kt-adv-heading4955_56459a-dc animated fadeIn wp-block-kadence-advancedheading\" data-kb-block=\"kb-adv-heading4955_56459a-dc\">PCI DSS Compliance can\u2019t be bought<\/h1>\n\n\n\n<div class=\"wp-block-group animated fadeIn is-nowrap is-layout-flex wp-container-core-group-is-layout-6c531013 wp-block-group-is-layout-flex\"><div class=\"publish-date-container\">\r\n\t<svg\r\n\t\twidth=\"16\"\r\n\t\theight=\"16\"\r\n\t\tviewbox=\"0 0 24 24\"\r\n\t\tfill=\"none\"\r\n\t\tstroke=\"#4b4b4b\"\r\n\t\tstroke-width=\"2\"\r\n\t\tstroke-linecap=\"round\"\r\n\t\tstroke-linejoin=\"round\"\r\n\t\txmlns=\"http:\/\/www.w3.org\/2000\/svg\"\r\n\t\taria-hidden=\"true\"\r\n\t>\r\n\t\t<rect x=\"3\" y=\"4\" width=\"18\" height=\"18\" rx=\"2\" ry=\"2\"><\/rect>\r\n\t\t<line x1=\"16\" y1=\"2\" x2=\"16\" y2=\"6\"><\/line>\r\n\t\t<line x1=\"8\" y1=\"2\" x2=\"8\" y2=\"6\"><\/line>\r\n\t\t<line x1=\"3\" y1=\"10\" x2=\"21\" y2=\"10\"><\/line>\r\n\t<\/svg>\r\n\t<span class=\"date-text\">\r\n\t\tJul 28, 2021\t<\/span>\r\n<\/div>\n\n\n<div class=\"kt-adv-heading4955_94157f-a4 wp-block-kadence-advancedheading kt-adv-heading-has-icon animated fadeIn delay-100ms\" data-kb-block=\"kb-adv-heading4955_94157f-a4\"><span class=\"kb-svg-icon-wrap kb-adv-heading-icon kb-svg-icon-fe_clock kb-adv-heading-icon-side-left\"><svg viewbox=\"0 0 24 24\"  fill=\"none\" stroke=\"currentColor\" stroke-width=\"2\" stroke-linecap=\"round\" stroke-linejoin=\"round\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"  aria-hidden=\"true\"><circle cx=\"12\" cy=\"12\" r=\"10\"\/><polyline points=\"12 6 12 12 16 14\"\/><\/svg><\/span><span class=\"kb-adv-text-inner\">1 min <\/span><\/div><\/div>\n<\/div>\n\n\n\n<figure class=\"wp-block-kadence-image kb-image4955_1512fe-67 size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"719\" src=\"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-1024x719.png\" alt=\"Cartoon of a girl\" class=\"kb-img wp-image-73499\" srcset=\"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-1024x719.png 1024w, https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-300x211.png 300w, https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-768x539.png 768w, https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-1536x1078.png 1536w, https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-18x12.png 18w, https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png 1695w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n<\/div><\/div>\n\n\n\n<div class=\"wp-block-uagb-container uagb-block-2eeb7bfc alignfull uagb-is-root-container\"><div class=\"uagb-container-inner-blocks-wrap\">\n<div class=\"wp-block-group blockera-block blockera-block-6gyzom is-vertical is-layout-flex wp-container-core-group-is-layout-b2c973f4 wp-block-group-is-layout-flex\">\n<h2 class=\"kt-adv-heading4955_73066a-2b wp-block-kadence-advancedheading\" data-kb-block=\"kb-adv-heading4955_73066a-2b\">PCI DSS Compliance: Why You Can\u2019t Buy It and How to Achieve It<\/h2>\n\n\n\n<p class=\"kt-adv-heading4955_671c0b-60 wp-block-kadence-advancedheading\" data-kb-block=\"kb-adv-heading4955_671c0b-60\"><em>Standard: something considered by an authority or by general consent as a basis of comparison; an approved model.<\/em><br><br>During my assessments of entities that are facing compliance for the first time, I am quite often asked:<br><em>\u201cI want to be compliant within date mm\/dd\/yyyy, can you make sure of that?\u201d<\/em><br>My answer is always: \u201cNo.\u201d<br><br><br>It is not a matter of being capable or incapable. It is a matter of responsibility. As a QSA, my duty is to assess the compliance towards a standard document, published by an official global organization. In my case, the standard is PCI-DSS.<br><br>An auditor MUST assess the compliance of a customer against a given standard during the period of auditing. The responsibility of the customer is to maintain all the in-scope systems, people, processes and data in compliance. An auditor can give guidance, consultancy and advice, but is not responsible for the result of the audit.<br><br>Unfortunately, there is sometimes a misconception that \u201ccompliance\u201d can be bought. It is particularly true when someone, who isn\u2019t fully aware of what achieving PCI-DSS entails, has set a deadline for the compliance.<br><br>A QSA performs an audit or a GAP analysis (if the company isn\u2019t already PCI-DSS compliant) and finds:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li class=\"blockera-block blockera-block-pi7qe8 has-manrope-font-family\" style=\"font-size:clamp(14px, 0.875rem + ((1vw - 3.2px) * 0.227), 16px);font-style:normal;font-weight:500\">Developers inexperienced with secure coding<\/li>\n\n\n\n<li class=\"blockera-block blockera-block-1vfy8z8 has-manrope-font-family\" style=\"font-size:clamp(14px, 0.875rem + ((1vw - 3.2px) * 0.227), 16px);font-style:normal;font-weight:500\">CHD expired by 4-5 years<\/li>\n\n\n\n<li class=\"blockera-block blockera-block-1cdpdlh has-manrope-font-family\" style=\"font-size:clamp(14px, 0.875rem + ((1vw - 3.2px) * 0.227), 16px);font-style:normal;font-weight:500\">Nonexistent Change Management<\/li>\n\n\n\n<li class=\"blockera-block blockera-block-1vrlm2o has-manrope-font-family\" style=\"font-size:clamp(14px, 0.875rem + ((1vw - 3.2px) * 0.227), 16px);font-style:normal;font-weight:500\">Absence of key management<\/li>\n\n\n\n<li class=\"blockera-block blockera-block-19sx8l7 has-manrope-font-family\" style=\"font-size:clamp(14px, 0.875rem + ((1vw - 3.2px) * 0.227), 16px);font-style:normal;font-weight:500\">Many other Security Horrors (SH)<\/li>\n<\/ul>\n\n\n\n<p class=\"kt-adv-heading4955_9582ef-77 wp-block-kadence-advancedheading\" data-kb-block=\"kb-adv-heading4955_9582ef-77\">The QSA puts the customer in remediation and most of the time the deadline to fix the SH is missed. The question is repeated:<br><br>\u201c<em>I want to be compliant within date mm\/dd\/yyyy, can you do that?\u201d<\/em>\u201d.<br>My answer: \u201cThat depends on YOU, it is your responsibility\u201d.<br><br>It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own. And, that only a consolidated, stable and streamlined daily process can bring the real goal of compliance, which with&nbsp;PCI DSS is: PROTECT CARDHOLDER DATA.<br><br>The old Chinese wise Lao Tzu, author of the&nbsp;<em>Tao Te Ching<\/em>, the main script, which gave birth to the \u201cPath of Tao\u201d and afterwards to the discipline of Zen used to say: A JOURNEY OF A THOUSAND MILES, BEGINS WITH ONE STEP\u201d.<\/p>\n<\/div>\n<\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>Blogg PCI DSS Compliance can\u2019t be bought 1 min PCI DSS Compliance: Why You Can\u2019t Buy It and How to Achieve It Standard: something considered by an authority or by general consent as a basis of comparison; an approved model. During my assessments of entities that are facing compliance for the first time, I am [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":73499,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"blogg","format":"standard","meta":{"_editorskit_title_hidden":false,"_editorskit_reading_time":1,"_editorskit_is_block_options_detached":false,"_editorskit_block_options_position":"{}","_eb_attr":"","inline_featured_image":false,"_uag_custom_page_level_css":"","wpm_timeformat":"","_wpm_styles":"","footnotes":""},"categories":[118],"tags":[117,128],"class_list":["post-4955","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blogg","tag-blog","tag-pci-dss"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>PCI DSS Compliance can&#039;t be bought - Complior<\/title>\n<meta name=\"description\" content=\"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/complior.se\/en\/pci-dss-compliance-cant-be-bought\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"PCI DSS Compliance can&#039;t be bought - Complior\" \/>\n<meta property=\"og:description\" content=\"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own\" \/>\n<meta property=\"og:url\" content=\"https:\/\/complior.se\/en\/pci-dss-compliance-cant-be-bought\/\" \/>\n<meta property=\"og:site_name\" content=\"Complior\" \/>\n<meta property=\"article:published_time\" content=\"2021-07-28T07:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-20T20:58:41+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1695\" \/>\n\t<meta property=\"og:image:height\" content=\"1190\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Kikki Bostrom\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Kikki Bostrom\" \/>\n\t<meta name=\"twitter:label2\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/\"},\"author\":{\"name\":\"Kikki Bostrom\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/person\\\/841f8a57425589a6d7f13c201d345016\"},\"headline\":\"PCI DSS Compliance can&#8217;t be bought\",\"datePublished\":\"2021-07-28T07:00:00+00:00\",\"dateModified\":\"2026-04-20T20:58:41+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/\"},\"wordCount\":400,\"publisher\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2021\\\/08\\\/cant-be-bought-02.png\",\"keywords\":[\"Blog\",\"PCI DSS\"],\"articleSection\":[\"Blogg\"],\"inLanguage\":\"en-GB\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/\",\"url\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/\",\"name\":\"PCI DSS Compliance can't be bought - Complior\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2021\\\/08\\\/cant-be-bought-02.png\",\"datePublished\":\"2021-07-28T07:00:00+00:00\",\"dateModified\":\"2026-04-20T20:58:41+00:00\",\"description\":\"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#primaryimage\",\"url\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2021\\\/08\\\/cant-be-bought-02.png\",\"contentUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2021\\\/08\\\/cant-be-bought-02.png\",\"width\":1695,\"height\":1190,\"caption\":\"Cartoon of a girl\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/complior.se\\\/pci-dss-compliance-cant-be-bought\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/complior.se\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"PCI DSS Compliance can&#8217;t be bought\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/complior.se\\\/#website\",\"url\":\"https:\\\/\\\/complior.se\\\/\",\"name\":\"Complior\",\"description\":\"Security beyond compliance\",\"publisher\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/complior.se\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/complior.se\\\/#organization\",\"name\":\"Complior\",\"url\":\"https:\\\/\\\/complior.se\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Complior_logo_dark-scaled.png\",\"contentUrl\":\"https:\\\/\\\/complior.se\\\/wp-content\\\/uploads\\\/2025\\\/06\\\/Complior_logo_dark-scaled.png\",\"width\":2560,\"height\":960,\"caption\":\"Complior\"},\"image\":{\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/complior.se\\\/#\\\/schema\\\/person\\\/841f8a57425589a6d7f13c201d345016\",\"name\":\"Kikki Bostrom\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g\",\"caption\":\"Kikki Bostrom\"},\"url\":\"https:\\\/\\\/complior.se\\\/en\\\/author\\\/kikki\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"PCI DSS Compliance can't be bought - Complior","description":"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/complior.se\/en\/pci-dss-compliance-cant-be-bought\/","og_locale":"en_GB","og_type":"article","og_title":"PCI DSS Compliance can't be bought - Complior","og_description":"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own","og_url":"https:\/\/complior.se\/en\/pci-dss-compliance-cant-be-bought\/","og_site_name":"Complior","article_published_time":"2021-07-28T07:00:00+00:00","article_modified_time":"2026-04-20T20:58:41+00:00","og_image":[{"width":1695,"height":1190,"url":"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png","type":"image\/png"}],"author":"Kikki Bostrom","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Kikki Bostrom","Estimated reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#article","isPartOf":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/"},"author":{"name":"Kikki Bostrom","@id":"https:\/\/complior.se\/#\/schema\/person\/841f8a57425589a6d7f13c201d345016"},"headline":"PCI DSS Compliance can&#8217;t be bought","datePublished":"2021-07-28T07:00:00+00:00","dateModified":"2026-04-20T20:58:41+00:00","mainEntityOfPage":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/"},"wordCount":400,"publisher":{"@id":"https:\/\/complior.se\/#organization"},"image":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#primaryimage"},"thumbnailUrl":"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png","keywords":["Blog","PCI DSS"],"articleSection":["Blogg"],"inLanguage":"en-GB"},{"@type":"WebPage","@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/","url":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/","name":"PCI DSS Compliance can't be bought - Complior","isPartOf":{"@id":"https:\/\/complior.se\/#website"},"primaryImageOfPage":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#primaryimage"},"image":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#primaryimage"},"thumbnailUrl":"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png","datePublished":"2021-07-28T07:00:00+00:00","dateModified":"2026-04-20T20:58:41+00:00","description":"It is a challenge to make customers understand that achieving compliance isn\u2019t the responsibility of the QSA, but their own","breadcrumb":{"@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#primaryimage","url":"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png","contentUrl":"https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png","width":1695,"height":1190,"caption":"Cartoon of a girl"},{"@type":"BreadcrumbList","@id":"https:\/\/complior.se\/pci-dss-compliance-cant-be-bought\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/complior.se\/"},{"@type":"ListItem","position":2,"name":"PCI DSS Compliance can&#8217;t be bought"}]},{"@type":"WebSite","@id":"https:\/\/complior.se\/#website","url":"https:\/\/complior.se\/","name":"Complior","description":"Security beyond compliance","publisher":{"@id":"https:\/\/complior.se\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/complior.se\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/complior.se\/#organization","name":"Complior","url":"https:\/\/complior.se\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/complior.se\/#\/schema\/logo\/image\/","url":"https:\/\/complior.se\/wp-content\/uploads\/2025\/06\/Complior_logo_dark-scaled.png","contentUrl":"https:\/\/complior.se\/wp-content\/uploads\/2025\/06\/Complior_logo_dark-scaled.png","width":2560,"height":960,"caption":"Complior"},"image":{"@id":"https:\/\/complior.se\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/complior.se\/#\/schema\/person\/841f8a57425589a6d7f13c201d345016","name":"Kikki Bostrom","image":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d3a78a33b10cfcbf5a04f53b522f24d176544c6ab014b5174854b6bb92287e13?s=96&d=mm&r=g","caption":"Kikki Bostrom"},"url":"https:\/\/complior.se\/en\/author\/kikki\/"}]}},"uagb_featured_image_src":{"full":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png",1695,1190,false],"thumbnail":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-150x150.png",150,150,true],"medium":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-300x211.png",300,211,true],"medium_large":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-768x539.png",768,539,true],"large":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-1024x719.png",1024,719,true],"1536x1536":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-1536x1078.png",1536,1078,true],"2048x2048":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02.png",1695,1190,false],"trp-custom-language-flag":["https:\/\/complior.se\/wp-content\/uploads\/2021\/08\/cant-be-bought-02-18x12.png",18,12,true]},"uagb_author_info":{"display_name":"Kikki Bostrom","author_link":"https:\/\/complior.se\/en\/author\/kikki\/"},"uagb_comment_info":0,"uagb_excerpt":"Blogg PCI DSS Compliance can\u2019t be bought 1 min PCI DSS Compliance: Why You Can\u2019t Buy It and How to Achieve It Standard: something considered by an authority or by general consent as a basis of comparison; an approved model. During my assessments of entities that are facing compliance for the first time, I am&hellip;","_links":{"self":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/4955","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/comments?post=4955"}],"version-history":[{"count":3,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/4955\/revisions"}],"predecessor-version":[{"id":80585,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/posts\/4955\/revisions\/80585"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/media\/73499"}],"wp:attachment":[{"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/media?parent=4955"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/categories?post=4955"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/complior.se\/en\/wp-json\/wp\/v2\/tags?post=4955"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}