Since PCI Compliance seems to be popular subject for SQL Server users (by which I mean that a quite a few of you are forced to deal with it) here's something that may help. Parente Randolph is a PCI QSA (Qualified Security Assessor) and they recently released a whitepaper entitled Deploying SQL Server 2008 Based on Payment Card Industry Data Security Standards (PCI DSS) Version 1.2. It's definitely worth taking a look.
Il-Sung LeeProgram ManagerSQL Server Engine Security
The document is quite interesting, thank you very much for sharing. Anyway, I have not seen references to how SQL Server can ensure the secure deletion of data as PCI DSS requires. Any suggestions?