GoTo understands that organizations that store, process, or transmit cardholder data must meet strict requirements to be PCI compliant. PCI compliance specifically relates to the security and controls around the payment applications and cardholder data within the merchant's IT environment.

LogMeIn Rescue is not a payment solution and at no time does GoTo handle, process, or store credit card data; therefore, LogMeIn Rescue falls outside of the scope of PCI review. According to the PCI Security Standards Council, it is the merchant or service provider's responsibility to ensure that they are using only products that support compliance. The role of GoTo (LogMeIn Rescue in particular) is to provide secure remote access and systems administration to PCI-compliant organizations without compromising compliance. There is currently no PCI evaluation or certification process for third party applications like LogMeIn Rescue. As a result, the question "Is LogMeIn Rescue Compliant?" is not the right question. As noted, the valid question is "How does GoTo help organizations comply with PCI requirements?" For details, see this special guide about PCI compliance.

Related Links:

• LogMeIn Rescue and PCI Compliance (PDF)
• Is your product secure? What security information is available?
• Security: An In-Depth Look (PDF)