Yes. All merchants who accept credit cards are required to become PCI compliant by the card associations. If your organization chooses not to become compliant, the organization will be subject to a monthly non-compliance fee of $19.95. In addition, any fines/fees related to a data breach would be the responsibility of the merchant! One of the big advantages to being PCI Compliant is that you can ensure you’re following all appropriate card brand regulations. By skipping PCI compliance, you may miss out on learning of some costly mistakes.