Every year you get an email requesting you fill out a long questionairre about your security practices to make sure credit cards you process are secured properly. It is intended to ensure you are doing a minimum necessary to protect credit cards you accept in your office.
Since many questions are technical in nature, our IT team often gets asked to fill out the questionairre. IT can (and should) help you answer the questions, however, the owner of the practice is the only one allowed to sign the attestation that the information is true and accurate.