What Nonprofits Should Look for in a SaaS Provider

The 12-point PCI data security standard also requires that organizations provide proof of compliance annually and submit to network scans performed by an independent vendor on a quarterly basis. SaaS providers that are not PCI compliant cannot guarantee the security of sensitive data to the same extent as PCI compliant vendors.