52.5 percent of merchants surveyed still have not fully implemented Payment Card Industry Data Security Standard. PCI DSS is a rigorous set of guidelines for protecting the security of credit card data. Merchants who do not comply with the standards may be fined, or they may lose their ability to accept credit cards. Most incentive programs and fines for non-compliance have been directed toward Level 1 and Level 2 merchants, RSA study says. One of the biggest obstacles in achieving PCI compliance is the time requirement.”]
Source: https://www.darkreading.com/analytics/retailers-still-lag-in-pci-compliance