Skip to main content

Understand PCI compliance levels


If you process credit cards, you can’t avoid dealing with PCI (Payment Card Industry) compliance—and the best thing you can do is educate yourself so your business and systems adhere with these important guidelines at all times. All merchants fall into one of four merchant PCI compliance levels, which are determined based on your Visa transaction volume and type over the period of a year. Visa transactions include all credit, debit and prepaid cards with the Visa logo.

Let’s take a look at how merchants are classified into the four levels.

PCI Compliance Level 1 Merchant
Any merchant that processes over 6 million Visa transactions per year (regardless of the processing channel: in-store, online, etc.)
Any merchant that Visa determines should be a Level 1 merchant to minimize risks to the Visa system
Due to their high annual processing volumes, Level 1 Merchants must take the greatest efforts to secure their processing systems. These merchants must complete annual on-site reviews by an internal auditor and successfully pass a required network scan by an approved scanning vendor.

PCI Compliance Level 2 Merchant
Any merchant that processes 1 million to 6 million Visa transactions per year (regardless of the processing channel: in-store, online, etc.)
PCI Compliance Level 3 Merchant
Any merchant that processes 20,000 to 1 million Visa eCommerce transactions per year
PCI Compliance Level 4 Merchant
Any merchant that processes fewer than 20,000 Visa eCommerce transactions per year
Any merchant that processes up to 1 million Visa transactions per year (regardless of the processing channel: in-store, online, etc)
Note that any merchant that has suffered a data breach of sensitive card data may be escalated to a higher validation level.

Maintaining Level 4 Classification
To satisfy the requirements of being classified as a Level 4 Merchant, a small to medium-sized business must:

Complete the appropriate Self Assessment Questionnaire (SAQ) from the PCI Security Standards Council (SSC)
Complete and obtain evidence of a passing vulnerability scan with a PCI SSC-approved scanning vendor (not applicable to all merchant types)
Complete the appropriate Attestation of Compliance in its entirety (located within the SAQ)
Submit the SAQ, evidence of passing the vulnerability scan (if required for your business type), the Attestation of Compliance and other requested documentation to your acquirer
Level 2, 3 and 4 Merchants must keep their annual SAQ current and conduct quarterly vulnerability scans with an approved scanning vendor.

For more information on achieving and maintaining PCI compliance, check out the PCI Security Standards Council website. Remember that PCI compliance is not a one-time solution, but rather a practice in which your business must be continually engaged in order to ensure compliance. Contact your payments processor for help in meeting the criteria.


#awepay #payments #paymentservices #paymentsolution #paymentsolutions #paymentsmadeeasy #PaymentsWithOutBorders #paymentsystem #paymentsolutionproviders #paymentsystems #ecommerce #ecommerceinsights #event #conference #congres #blockchain #pwa #cryptocurrency #KeshPOS #mPOS #poweredbyinnovectives #thursdaythoughts #bitcoins #Earn #Payments #bitcoin #binarytrade #forex #investment #wealth


Comments

Post a Comment

Popular posts from this blog

5 MAJOR BENEFITS OF MOBILE PAYMENTS

Author: Awepay When customers come to the register to pay for their meal or purchases, many can now simply hold up their mobile phones instead of handing over dollar bills or pulling out a credit card. Since mobile payment programs are relatively inexpensive and don’t require sophisticated technical knowledge to implement, many small businesses have been quick to adopt the new technology. “Mobile has really taken away the requirement that you have to build big systems and be a large company to be successful with technology,” says Gene Signorini, the vice president of mobile insights at Mobiquity. “In many ways, it is easier for small businesses to adopt mobile payment programs because they don’t have a large infrastructure to work through so small businesses can jump right in.” Here are five ways offering a mobile payment to your customers will help you increase sales: Integrate and increase incentive programs. One of the biggest benefits of using a mobile payment option i...
Post a Comment
Read more

12 Startups Utilizing Blockchain Technology in New Ways

Author: Awepay Cryptocurrency created quite the buzz this past year. Although the technology has been around for a few years, 2017 was the year it really took off. Bitcoin, the first application of cryptocurrency technology, hit $20,000 a coin, while coins like Ethereum also saw their prices increase. However, the technology behind these tokens, blockchain, has far more applications than just cryptocurrencies. Through a network of smart contracts that operate utilizing decentralized information on a ledger, blockchain is able to provide unmatched security and speed for data transfers. This means that blockchain technology has an application in nearly every industry where value is exchanged. For this reason, many startups have started to explore how this technology can change the way the world works. Here are twelve of those startups, each of which are utilizing blockchain technology in new ways. Related: 10 Reasons Why Good Customer Service Is Your Most Important Metric ...
6 comments
Read more

How to Keep Payment Fees Low for Your Small Business

( #Awepay #PaymentGateway ) The best part of business is getting paid, but getting paid isn’t always as easy or simple as it should be. In addition to figuring out the logistics of how to get paid, you may have to pay multiple vendors different payment processing fees. Those fees can add up fast. But you have options that can help keep things simple while lowering your fees. Read on to learn more. Integrated vs. non-integrated payment processors Both online and offline card payments require a series of important steps to complete. The ability to accept cards online requires both a merchant account and a payment gateway. A merchant account is kind of like a bank account used to aggregate payments from credit cards, debit cards and sometimes ACH payments. A payment gateway is a system used to process payments, generally online, that feeds into the merchant account. Thanks to the magic of online business, you can sign up for a two-in-one package to accept payments online. For a ...
Post a Comment
Read more