I fully comprehend that Square acts as merchant-of-record for transactions and that the card reader encrypts the data from start to finish thereby preventing my network from being included in the scope of PCI compliance. However, what about manual entry cards? Based on what I have read, manually entering cardholder data would put my network in the scope of PCI compliancy. Can anyone confirm this? Thanks!
