Skip to main content

Identify the right PCI requirements for your business




The Payment Card Industry Data Security Standard (PCI DSS) is a security standard developed by the major card brands (Visa®, MasterCard®, Discover®, American Express® and others) to help merchants protect credit cardholder data. Merchants who process credit cards are required to be PCI compliant in order to protect cardholder data. The requirements associated with maintaining PCI compliance vary depending on the size and processing method of the business.  There are four levels, or “tiers,” and each level has its own requirements. Read on to identify which level applies to your business and the steps you can take to achieve compliance for your tier.

What are the “tiers” associated with PCI compliance?

1. Level 1 Merchants:
Level 1 or Tier 1 merchants process over 6 million Visa* transactions annually through all channels (card present, card not present, ecommerce.)  Also, any worldwide merchant that processes a total of 6 million transactions across all regions may cause the entire business to qualify. Merchants who are considered Tier 1 must do the following:

Complete an annual PCI DSS validation through a Qualified Security Assessor (QSA)
Complete a quarterly network scan by an ASV (Approved Scanning Vendor)
Complete the Attestation of Compliance Form​
2. Level 2 Merchants:
Tier 2 merchants process 1 – 6 million Visa transactions annually through all channels (card present, card not present, ecommerce.) Merchants who are considered Tier 2 must do the following:

Complete an Annual Self-Assessment Questionnaire (SAQ)
Complete a quarterly network scan by an ASV (Approved Scanning Vendor)
Complete the Attestation of Compliance Form
3. Level 3 Merchants:
Tier 3 merchants process 20,000 to 1 million Visa transactions annual exclusively via e-commerce processing methods. Merchants who are considered Tier 3 must do the following:

Complete an Annual Self-Assessment Questionnaire (SAQ)
Complete a quarterly network scan by an ASV (Approved Scanning Vendor)
Complete the Attestation of Compliance Form
4. Level 4 Merchants:
Tier 4 merchants process up to 1 million Visa transactions annually through all channels (card present, card not present, ecommerce) and do not process more than 20,000 Visa transactions annually exclusively via ecommerce. Alternatively a merchant processing less than 20,000 Visa transactions annually exclusively via ecommerce will qualify for Tier 4. Merchants who are considered Tier 4 must do the following:

Complete an Annual Self-Assessment Questionnaire (SAQ)
Complete a quarterly network scan by an ASV (Approved Scanning Vendor)
Complete the Attestation of Compliance Form
How do merchants take action?
Merchants can determine where they fall in the PCI compliance tiers through their merchant services provider or the reporting tools provided by said provider. Merchants in tiers 1-3 have more complex compliance requirements because of the size and nature of their business. They are also considerably more likely to have internal IT and compliance teams to implement and monitor their compliance programs. Most merchants who identify as small businesses fall under the tier 4 category. While the compliance requirements may be somewhat simpler, small merchants may find it more challenging to meet them because they do not have internal IT infrastructure. They may feel overwhelmed and unsure where to begin.

Luckily, for Tier 4 merchants, there are many products available at reasonable costs related to their business size. While Tier 1-3 merchants may have to spend quite a lot of money on security and then pay for onsite assessments performed by a Qualified Security Assessor, Tier 4 merchants who actively use a PCI compliance service can get a similar benefit for the size of their business for pennies on the dollar.

Vantiv Integrated Payments offers Merchant SecureAssist®, which is a compliance assistance solution that offers the tools to help merchants achieve and maintain compliance. This solution includes an online “wizard” that guides merchants through the compliance process one step at a time, as well as real-time, point of sale system scans.

#awepay #paymentfraud #artificialintelligence #ai #machinelearning #fraud #frauds #onlinefrauds #fraudprevention #stoppingfraudusingai #stoppingfraud #catchingfraud #ecommerce #ecommercefrauds #ecommerceproducts #product #saas #security #cybersecurity #cybercrime #service #malaysia #startup #tech #techproduct #scifi #payment #team #newarrivals #latesttechnology



Comments

Post a Comment

Popular posts from this blog

5 MAJOR BENEFITS OF MOBILE PAYMENTS

Author: Awepay When customers come to the register to pay for their meal or purchases, many can now simply hold up their mobile phones instead of handing over dollar bills or pulling out a credit card. Since mobile payment programs are relatively inexpensive and don’t require sophisticated technical knowledge to implement, many small businesses have been quick to adopt the new technology. “Mobile has really taken away the requirement that you have to build big systems and be a large company to be successful with technology,” says Gene Signorini, the vice president of mobile insights at Mobiquity. “In many ways, it is easier for small businesses to adopt mobile payment programs because they don’t have a large infrastructure to work through so small businesses can jump right in.” Here are five ways offering a mobile payment to your customers will help you increase sales: Integrate and increase incentive programs. One of the biggest benefits of using a mobile payment option i...
Post a Comment
Read more

12 Startups Utilizing Blockchain Technology in New Ways

Author: Awepay Cryptocurrency created quite the buzz this past year. Although the technology has been around for a few years, 2017 was the year it really took off. Bitcoin, the first application of cryptocurrency technology, hit $20,000 a coin, while coins like Ethereum also saw their prices increase. However, the technology behind these tokens, blockchain, has far more applications than just cryptocurrencies. Through a network of smart contracts that operate utilizing decentralized information on a ledger, blockchain is able to provide unmatched security and speed for data transfers. This means that blockchain technology has an application in nearly every industry where value is exchanged. For this reason, many startups have started to explore how this technology can change the way the world works. Here are twelve of those startups, each of which are utilizing blockchain technology in new ways. Related: 10 Reasons Why Good Customer Service Is Your Most Important Metric ...
6 comments
Read more

How to Keep Payment Fees Low for Your Small Business

( #Awepay #PaymentGateway ) The best part of business is getting paid, but getting paid isn’t always as easy or simple as it should be. In addition to figuring out the logistics of how to get paid, you may have to pay multiple vendors different payment processing fees. Those fees can add up fast. But you have options that can help keep things simple while lowering your fees. Read on to learn more. Integrated vs. non-integrated payment processors Both online and offline card payments require a series of important steps to complete. The ability to accept cards online requires both a merchant account and a payment gateway. A merchant account is kind of like a bank account used to aggregate payments from credit cards, debit cards and sometimes ACH payments. A payment gateway is a system used to process payments, generally online, that feeds into the merchant account. Thanks to the magic of online business, you can sign up for a two-in-one package to accept payments online. For a ...
Post a Comment
Read more