We are in the midst of a 'shop online' trend explosion. Internet retailers are continuously reinventing how we [customers] shop online. Whether it's via our mobile devices, PCs, or in-store kiosks, there is a myriad of new options for transacting business that carry both positive and negative implications for the consumer and the retailers themselves. We need to know that our online stores are following the pci compliance standards.
According to the Security Standards Council, there are 12 compliant requirements that meet a variety of security goals. These goals are: Building and maintaining a secure network, protecting card holder data, maintaining a vulnerability management program, implementing strong access control measures and maintaining an information security policy. Here's your guide to the four different levels of compliance as mandated by the major payment card brands, Visa and Mastercard, as well as action items for each.
Level 1: Your company has over 6 million Visa and/or Mastercard transactions processed per year. This level requires yearly on-site reviews by an internal auditor, and a network scan by an approved scanning vendor (ASV). Level 2: You have 1 million to 6 million Visa and/or Mastercard transactions processed per year. You must complete a Self-Assessment Questionnaire (SAQ) annually, and this level requires a network scan with an approved scanning vendor.
Level 3: Your company has 20,000 to 1 million Visa and/or Mastercard e-commerce transactions processed per year. You must complete a Self-Assessment Questionnaire (SAQ) annually, and this level also requires a network scan with an approved scanning vendor. Level 4: You have less than 20,000 Visa and/or Mastercard e-commerce transactions processed per year. Must complete a Self-Assessment Questionnaire (SAQ) annually, and requires a network scan with an approved scanning vendor.
By narrowing down what level and type of merchant you are, you're well on your way to becoming compliant. The PCI Compliance standards are important to you as a business and in order to keep your customer information safe and secure.
According to the Security Standards Council, there are 12 compliant requirements that meet a variety of security goals. These goals are: Building and maintaining a secure network, protecting card holder data, maintaining a vulnerability management program, implementing strong access control measures and maintaining an information security policy. Here's your guide to the four different levels of compliance as mandated by the major payment card brands, Visa and Mastercard, as well as action items for each.
Level 1: Your company has over 6 million Visa and/or Mastercard transactions processed per year. This level requires yearly on-site reviews by an internal auditor, and a network scan by an approved scanning vendor (ASV). Level 2: You have 1 million to 6 million Visa and/or Mastercard transactions processed per year. You must complete a Self-Assessment Questionnaire (SAQ) annually, and this level requires a network scan with an approved scanning vendor.
Level 3: Your company has 20,000 to 1 million Visa and/or Mastercard e-commerce transactions processed per year. You must complete a Self-Assessment Questionnaire (SAQ) annually, and this level also requires a network scan with an approved scanning vendor. Level 4: You have less than 20,000 Visa and/or Mastercard e-commerce transactions processed per year. Must complete a Self-Assessment Questionnaire (SAQ) annually, and requires a network scan with an approved scanning vendor.
By narrowing down what level and type of merchant you are, you're well on your way to becoming compliant. The PCI Compliance standards are important to you as a business and in order to keep your customer information safe and secure.
About the Author:
Want to find out more about thepci compliance standards, then visit Kate Bailey's site on how to find the best information about the pci compliance standards for your needs.
No comments:
Post a Comment