What is PCI Compliance and why is it important?
description
Transcript of What is PCI Compliance and why is it important?
What is PCI Compliance and why is it important?
paysimple.com | follow @PaySimple | facebook.com/paysimple
Payment Card Industry Data Security Standard The acronym, PCI DSS, stands for Payment Card Industry
Data Security Standards The PCI DSS is designed to protect against credit card
breaches, and compliance is required of all merchants accepting credit cards
The “golden rule” of payment processing:
Secure others’ payment information as you would your own.
www.paysimple.com | follow @PaySimple | facebook.com/paysimple
Only 16% of Level 4 (Small Business) Merchants are “very familiar” with PCI compliance.
Small Business and PCI Compliance
Source: The Green Sheet
PCI DSS Familiarity
"Very Famil-iar"
Not "Very Familiar"
www.paysimple.com | follow @PaySimple | facebook.com/paysimple
But why? According to a Trustwave, an authority on security and
PCI compliance management solutions, over 80% of merchants can achieve compliance within 12 hours
www.paysimple.com | follow @PaySimple | facebook.com/paysimple
Simplify PCI DSS Compliance Find a PCI DSS certified gateway or software provider to
handle the following: Credit Card processing Transaction history storage Credit Card account storage
Create a security policy for your company – and follow it!www.paysimple.com | follow @PaySimple | facebook.com/paysimple
Your company will not store credit card numbers in a digital format
You company will not store any paper copies of CVV2 security codes
All paper documents with credit card information will be kept in a locked filing area with restricted access
You can find an example of a security policy by visiting www.paysimple.com/pci, under item 3.
What should a security policy include?
www.paysimple.com | follow @PaySimple | facebook.com/paysimple
The Final Steps to PCI Compliance1. Visit the PCI DSS website:
www.pcisecuritystandards.org/merchants
Visit the
Phone, mail, or web transactions
Retail
The Final Steps to PCI Compliance1. Visit the PCI DSS website:
www.pcisecuritystandards.org/merchants
2. Click on PCI DSS Self-Assessment Questionnaire (SAQ)3. If you process less than 20,000 transactions a year,
select Questionnaire A4. Complete the form and submit it to your merchant
processing company
Summary Once you’ve completed these simple steps, your annual
PCI DSS compliance is complete! To review:
Find a PCI Certified Partner
Set up an internal Security Policy
Complete your SAQ
form
Submit form to your
processor
Follow your Security
Policy for one year