???Periodic reviews and communications should be performed to confirm that PCI DSS requirements continue to be in place and personnel are following secure processes,??? the standard says. ???These periodic reviews should cover all facilities and locations, including retail outlets, data centers, etc., and include reviewing system components (or samples of system components), to verify that PCI DSS