The RSI security blog breaks down the measures in a few detail, but the procedure in essence goes similar to this: PCI DSS compliance is the process of adhering to a list of controls and requirements for securing Bodily and on-line financial transactions. Stripe.js v2 SAQ A-EP Applying Stripe.js v2 https://www.nathanlabsadvisory.com/blog/nathan/the-benefits-of-vulnerability-assessments-and-penetration-testing-services-in-the-uae/