Upon Getting recognized which evaluation you might want to complete, another action is always to conduct the assessment, comprehensive the pertinent SAQ or ROC documentation, and post it to Stripe for overview. The distinction between the differing types of SOC audits lies during the scope and duration of the evaluation: https://www.nathanlabsadvisory.com/blog/nathan/how-to-achieve-pci-dss-compliance-certification-in-the-usa-quickly/