Who Must Comply?
Q & A
- Reymann Group: PCI Self-Certifications Just Got Easier!
- Forrester:
The Top 10 Things You Should Know About PCI Compliance - Aberdeen:
Protecting Card Holder Data - Xceedium:
PCI Compliance - Technical Note
- GateKeeper PCI
Brochure - LeapFrog Prevention Whitepaper
Does your organization have an IP and WiFi enabled merchant account for processing card transactions?
These technologies have a very high degree of risk plus they are likely not PCI compliant.
Who is at risk?
- Every merchant using 3750 IP or any POS terminal connecting via Internet protocol
- Every merchant running a virtual terminal application, such as Authorize.Net
- Every merchant using a PC application, such as PC Charge or POS Partner
- Every restaurant running pay-at-the-table whether WiFi or NFC
- If you are a payment processor and have a merchant using any of the above, you too are at risk!
Who in the organization should pay particular attention?
Merchant managers, PCI Compliance/Compliance managers, Operations managers, IT persons responsible for Internet security and everyone who is working to ensure that all critical data – particularly cardholder data – is secure regardless of who has it and uses it.
What are the consequences of not being compliant with PCI?
Increasing incidents of credit card data theft – and the steep penalties endured by companies who suffer the consequences, including heavy fines, loss of merchant account, compromised cardholder data and brand reputation damage – have made complying with PCI not only a smart business decision and the "right" thing to do, but a necessity for sustaining a reputable organization.
