Comment Re:Why are they storing this data anyway? (Score 1) 213
Incorrect. The PIN should never leave the device. It should be encrypted by the key pad for the chip on the card, and only that chip should be able to read it, decode it, and then sign the transaction as valid and authenticated.
Again, the PIN should NEVER leave the device.