Most merchants like the idea of the credit card industry policing itself, versus lawmakers getting involved. PCI Security Standards Council is the industry’s attempt to do just that. But how ecommerce merchants meet the PCI’s standards is confusing to many, and the penalty for not being compliant is hard to understand, too. Bob Russo, general manager of the PCI Security Standards Council, is with us today to help sort out these and other questions. He joins Practical eCommerce’s Kerry Murdock.