The stances of the PCI council may affect your business, but understanding them can be difficult. Although we proudly note that our payment solutions are PCI compliant, it's important to understand what that means and separate the PCI itself from its different branches and functions. Owners and operators need to trust their systems to avoid straying from compliance.
Though these three points may seem obvious, they're important to remember to avoid making any mistakes. Following the right security measures will send the message that your POS is more trustworthy, and also put you in line with other widely followed standards:
- Non-compliance doesn't necessarily lead to credit card company fines: In an interview with ItProPortal, Tom Harwood of Aeridina recently said that merchants may not be subject to the card company fines they think they are. At the same time, that doesn't give them license to ignore the PCI security standards altogether. Instead, it could be best to determine whether or not they are exempt.
- The DSS could expand worldwide: The United States isn't the only place where the PCI hopes to enforce its key requirements. BankInfoSecurity quoted Stephen Orfei, general manager of the organization's Security Standards Council, who said that global acceptance of the standards will drive security issues in many different markets.
- The PCI is different from the PCI SSC: As Ben Rothke recently pointed out, PCI does not refer to the body that establishes standards, but instead the Payment Card Industry itself. If this seems like basic information, Rothke said that the National Retail Federation itself seems to have confused one for the other.
Get all of the tools and support you need to adapt to a new payment processing software when you work with 911. Contact us to learn more.