From the world’s largest corporations to small Internet stores, compliance with the PCI Data Security Standard (PCI DSS) is vital for all merchants who accept credit cards, online or offline, because nothing is more important than keeping your customer’s payment card data secure. The size of your business will determine the specific compliance requirements that must be met.
Developed by the founding payment brands MasterCard Worldwide, Visa International, American Express, Discover Financial Services and JCB. The standard was developed to help facilitate the broad adoption of consistent security measures on a global basis. The five founding members jointly formed an independent regulatory organisation called the PCI Security Standards Council (PCI SSC) to promote the standard which was launched on September 7, 2006.
The Standard can be found on the PCI SSC’s Website
Any merchant, acquirer and issuer bank, and service provider that processes, stores or transmits credit or debit card data, and any connected party to them.
If you answered yes to any of the above questions PCI DSS applies to you.
Credit card fraud and identity theft are rampant across the globe and affecting millions of consumers and businesses everyday. The media is filled with stories of credit card information breaches and payment card industry have determined a need for a concerted and comprehensive response. The development of the PCI DSS is a critical step in this direction. The standard continues to be strengthened and refined through the joint efforts of PCI SSC, the credit card brands, acquirers and covered parties alike.
However as with all compliance regimes, it is imperative that sufficient robust discussion occurs for business reasons for compliance to be well understood.
Yes. Merely using a third-party company does not exclude a company from PCI compliance. It may cut down on their risk exposure and consequently reduce the effort to validate compliance. However, it does not mean they can ignore PCI.
The payment brands may, at their discretion, fine an acquiring bank $5,000 to $100,000 per month for PCI compliance violations. The banks will most likely pass this fine on downstream till it eventually hits the merchant. Furthermore, the bank will also most likely either terminate your relationship or increase transaction fees. Penalties are not openly discussed nor widely publicized, but they can catastrophic to a small business. It is important to be familiar with your merchant account agreement, which should outline your exposure.
If you are a merchant that accepts payment cards, you are required to be compliant with the PCI Data Security Standard. PayChoice can help you by reducing the scope of PCI DSS requirements you need to fulfil by using our facilities. To find out your exact compliance requirements only from your payment brand or acquirer if you have or are applying for an internet merchant facility.
What are you waiting for? If you are in business and you’re not accepting online payments, then you’re losing money. Start accepting all major credit cards,