As A Part of PCI information security criteria, Bodily cardholder info need to also be saved in a very protected locale, such as a locked home or storage location with limited access. PCI compliance is divided into four levels, based upon the once-a-year amount of credit or debit card transactions https://www.nathanlabsadvisory.com/rbi-cyber-security-framework.html