Setup:
Mobile
uses Stripe to get credit card token.Mobile
sends token toServer 1
.Server 1
gets credit card details using the token.- Instantly, the
Server 1
encrypts the details and sends it to a PCI DSS complianceServer 2
via an SSL connection.
Does Server 1
has to be PCI DSS compliant?