Not like many compliance regulations, SOC compliance is often not obligatory to operate in a given sector like PCI DSS compliance is for processing payment card information. On the whole, providers have to have a SOC audit when their clients request one particular. The PCI Security Criteria Council was produced https://www.nathanlabsadvisory.com/