What is the difference between PCI DSS compliance and validation?
Being compliant means you are handling cardholder data in accordance with PCI DSS requirements. The major card brands require all card accepting merchants to be PCI DSS compliant at all times.Validating compliance means proving you are compliant. Your validation requirements, deadlines and penalties for non-compliance will vary depending on your PCI Level.