3.6.b For service providers only: If the service provider shares keys with their customers for transmission or storage of cardholder data, verify that the service provider provides documentation to customers that includes guidance on how to securely transmit, store, and update customer’s keys, in accordance with Requirements 3.6.1 through 3.6.8 below.