We must meet the standards each year to meet PCI compliance with our Credit card processor. PCI compliance, or compliance with the Payment Card Industry Data Security Standard (PCI DSS). Google "PCI Compliance" for details.
This is what we have to show from our annual review. I think it is similar to SOC 2
screenshot: https://app.screencast.com/yNSRIch6Bs80n
PCI vs SOC2
https://www.zengrc.com/blog/soc-2-vs-pci-compliance-whats-the-difference/