I've received a letter from HSBC Merchant Services telling us that we need to be compliant with the PCI DSS.

They are asking for:

• All IP Adresses where the card data is stored, processed or transmitted (which can be a website and/or an office PC)
• Details of any Payment Service Providers used

Can anyone tell me what they have done regarding this?

Many thanks

Martin