In this blog, fscom’s operational and security expert, Greg James takes the time to answer all your key questions in relation to REP018 – the operational and security risk assessment that all payment service providers (PSPs) must submit to the regulator at least once a year.