B-IP Retailers applying only standalone, PTS-approved payment terminals with an IP relationship into the payment processor without having Digital cardholder info storage. If a company statements that they're SOC two Compliant, it demonstrates their ability to meet up with the requirements of AICPA’s Have confidence in Service Criteria. Even so, https://www.nathanlabsadvisory.com/blog/nathan/achieving-soc-2-compliance-a-crucial-step-towards-data-security/