This document discusses PCI compliance in the cloud. It begins by providing background on evolving payment landscapes and defining the cloud. It then outlines key PCI DSS requirements and how responsibility is shared between cloud providers and customers to ensure compliance. Requirements include firewalls, secure configurations, protecting stored data, logging and monitoring, and policies. The document recommends choosing a PCI certified cloud provider and confirms requirements are covered, with some remaining the customer's responsibility. It introduces a company called ControlCase that provides a compliant cloud platform and compliance services to help keep sensitive data secure in the cloud.