Version 3.0 of the PCI Data Security Standard (PCI DSS) goes into effect by the first of next year. Most of the changes are simple clarifications of previous requirements, but could have a major impact on merchants as they touch on everything from the definition of scope and segmentation. The scope definition has always been one of the thorniest issues within PCI compliance. Both parties are now required to formally document who is responsible for which PCI requirements are effective for compliance (12.9), and service providers must acknowledge compliance.”]