| 💼 12.4.1 Responsibility is established by executive management for the protection of cardholder data and a PCI DSS compliance program. | | | | | no data |
| 💼 12.4.2 Reviews are performed at least once every three months to confirm that personnel are performing their tasks in accordance with all security policies and operational procedures | 1 | | | | no data |
|  💼 12.4.2.1 Reviews conducted in accordance with Requirement 12.4.2 are documented. | | | | | no data |