Home > Storage > ObjectScale and ECS > Product Documentation > ECS PCI DSS Compliance > Requirement 9: Restrict physical access to cardholder data
Physical access to cardholder data or systems that host cardholder data should be restricted to ensure systems or hard copies of data may not be removed.
ECS nodes can be installed in locked racks and placed in a secure data center, protecting physical access to the nodes. D@RE further enhance physical security in the event any drives are removed from a node.
ECS introduces encryption the data by AES256 with Cipher Block Chaining sent with each site via https.
The other requirements in this section are enforced through policies, procedures, and processes external to the ECS cluster.