{"id":194,"date":"2019-08-21T19:21:11","date_gmt":"2019-08-21T19:21:11","guid":{"rendered":"http:\/\/pspservices.com\/future\/?page_id=194"},"modified":"2025-07-17T23:25:24","modified_gmt":"2025-07-17T23:25:24","slug":"pci-compliance","status":"publish","type":"page","link":"https:\/\/pspservicesco.com\/index.php\/pci-compliance\/","title":{"rendered":"PCI Compliance"},"content":{"rendered":"<p>[vc_row full_width=&#8221;stretch_row&#8221; background_image=&#8221;4928&#8243;][vc_column][tm_heading tag=&#8221;h1&#8243; custom_google_font=&#8221;&#8221; align=&#8221;center&#8221; text_color=&#8221;custom&#8221; custom_text_color=&#8221;#ffffff&#8221; text=&#8221;PCI Compliance&#8221; css=&#8221;.vc_custom_1566493013027{padding-top: 250px !important;padding-bottom: 250px !important;}&#8221;][\/vc_column][\/vc_row][vc_row][vc_column][tm_spacer size=&#8221;lg:75&#8243;][\/vc_column][\/vc_row][vc_row][vc_column][tm_heading tag=&#8221;h2&#8243; custom_google_font=&#8221;1&#8243; google_fonts=&#8221;font_family:Muli%3A300%2C300italic%2Cregular%2Citalic|font_style:300%20light%20regular%3A300%3Anormal&#8221; font_weight=&#8221;300&#8243; align=&#8221;center&#8221; md_align=&#8221;center&#8221; text=&#8221;PCI compliance applies to all businesses accepting credit and debit cards payments, regardless of their size or their nature.&#8221; font_size=&#8221;lg:32&#8243;][\/vc_column][\/vc_row][vc_row lg_spacing=&#8221;padding_top:75;padding_bottom:75&#8243;][vc_column width=&#8221;1\/2&#8243;][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;What is PCI Compliance?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532405936{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]The <a title=\"About Payment Card Industry Council\" href=\"https:\/\/www.pcisecuritystandards.org\/about_us\/\" target=\"_blank\" rel=\"noopener noreferrer\">Payment Card Industry (PCI)<\/a>\u00a0council, which includes American Express, Discover Financial Services, JCB International, MasterCard, and Visa Inc., standarised technical \u00a0and security compliance programs that requires Service Providers, Banks and high-volume Merchants to follow strict security guidelines, including:<\/p>\n<ul>\n<li>Building and maintaining a secure network.<\/li>\n<li>Protecting cardholder data.<\/li>\n<li>Maintaining a vulnerability management program.<\/li>\n<li>Implementing strong access control measures.<\/li>\n<li>Regularly monitoring and testing networks.<\/li>\n<li>Maintaining an information security policy.<\/li>\n<\/ul>\n<p>In accordance with these guidelines and with a third-party security assessment, PSP Card Services has been issued a certificate of PCI Compliance toward the requirements of the Payment Card Industry (PCI) Data Security Standards (DSS) validation methods.<\/p>\n<p>Merchant complience levels as defined by Visa:<\/p>\n<table border=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td valign=\"top\" width=\"141\">\n<p align=\"center\">Merchant Level<\/p>\n<\/td>\n<td>\n<p style=\"text-align: center;\">Description<\/p>\n<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"141\">\n<p align=\"center\">1<\/p>\n<\/td>\n<td>Any merchant &#8212; regardless of acceptance channel &#8212; processing over 6M Visa transactions per year. Any merchant that Visa, at its sole discretion, determines should meet the Level 1 merchant requirements to minimize risk to the Visa system.<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"141\">\n<p align=\"center\">2<\/p>\n<\/td>\n<td>Any merchant &#8212; regardless of acceptance channel &#8212; processing 1M to 6M Visa transactions per year.<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"141\">\n<p align=\"center\">3<\/p>\n<\/td>\n<td>Any merchant processing 20,000 to 1M Visa e-commerce transactions per year.<\/td>\n<\/tr>\n<tr>\n<td valign=\"top\" width=\"141\">\n<p align=\"center\">4<\/p>\n<\/td>\n<td>Any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants &#8212; regardless of acceptance channel &#8212; processing up to 1M Visa transactions per year.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;PCI Educational Resources&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566493150614{padding-top: 20px !important;padding-right: 5% !important;padding-left: 5% !important;}&#8221;]We invite you to explore the educational materials that best meet your level of expertise. PCI Security Council continually adding new materials in formats that address all learning modalities. As a community, we rely on your input. If you know of some great PCI educational materials from independent sources, please tell us about them and we may share them here to help our community grow. <a title=\"PCI Security Council Educational Resources\" href=\"https:\/\/www.pcisecuritystandards.org\/pci_security\/educational_resources\" target=\"_blank\" rel=\"noopener noreferrer\">VIEW ALL MATERIALS<\/a>[\/vc_column_text][\/vc_column][vc_column width=&#8221;1\/2&#8243;][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;Who does PCI apply to?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532462987{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]<strong>PCI compliance applies to all businesses accepting credit and debit cards payments<\/strong>, regardless of their size or their nature. Even tiny merchants using a mobile app on the weekend are required to meet the PCI Standard. PCI is the world&#8217;s largest security standard, as it applies to millions of merchants, processors, ATM companies and other service providers world-wide.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;Why do I have to be compliant?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532449580{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]To avoid getting breached and losing credit card numbers! Fines imposed by the card-brands in the event of a breach can be extremely costly. In this digital age all businesses should want to protect themselves.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;I&#8217;ve been processing for years, why now?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532432630{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]With the release of PCI version 3 (the newest standard), Visa and MasterCard are now requiring that all processors validate the compliance of all their merchants. To make this process easy and affordable for our merchants, we&#8217;ve put together a PCI program that is included as part of our merchant services.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;My provider is compliant, does that mean I&#8217;m compliant?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532418832{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]The short answer is no. While it is crucial to use point-of-sale providers, shopping carts and payment processors that are compliant, you are still responsible for your own staff and environment. A virus-infected computer or a dishonest staff member is all it could take to have someone steal credit card numbers from your business.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;If my business has multiple locations do I need to validate PCI Compliance for each location?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532386667{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]Unless each location processes under a different Tax ID then you are only required to validate once annually for all locations. You may also be required to submit quarterly passing network scans by a PCI SSC Approved Scanning Vendor (ASV), if applicable.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;What are the penalties for noncompliance?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566493324485{padding-top: 20px !important;padding-right: 5% !important;padding-left: 5% !important;}&#8221;]Noncompliance can be very costly and although the payment brands fine the acquiring bank and not the merchant directly, penalties make their way downstream and could result in increased transaction fees or even termination of the banking relationship. An acquiring bank faces anywhere from $5,000 to $100,000 per month for PCI compliance violations.[\/vc_column_text][\/vc_column][\/vc_row]<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[vc_row full_width=&#8221;stretch_row&#8221; background_image=&#8221;4928&#8243;][vc_column][tm_heading tag=&#8221;h1&#8243; custom_google_font=&#8221;&#8221; align=&#8221;center&#8221; text_color=&#8221;custom&#8221; custom_text_color=&#8221;#ffffff&#8221; text=&#8221;PCI Compliance&#8221; css=&#8221;.vc_custom_1566493013027{padding-top: 250px !important;padding-bottom: 250px !important;}&#8221;][\/vc_column][\/vc_row][vc_row][vc_column][tm_spacer size=&#8221;lg:75&#8243;][\/vc_column][\/vc_row][vc_row][vc_column][tm_heading tag=&#8221;h2&#8243; custom_google_font=&#8221;1&#8243; google_fonts=&#8221;font_family:Muli%3A300%2C300italic%2Cregular%2Citalic|font_style:300%20light%20regular%3A300%3Anormal&#8221; font_weight=&#8221;300&#8243; align=&#8221;center&#8221; md_align=&#8221;center&#8221; text=&#8221;PCI compliance applies to all businesses accepting credit and debit cards payments, regardless of their size or their nature.&#8221; font_size=&#8221;lg:32&#8243;][\/vc_column][\/vc_row][vc_row lg_spacing=&#8221;padding_top:75;padding_bottom:75&#8243;][vc_column width=&#8221;1\/2&#8243;][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;What is PCI Compliance?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532405936{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]The Payment Card Industry (PCI)\u00a0council, which includes American Express, Discover Financial Services, JCB International, MasterCard, and Visa Inc., standarised technical \u00a0and security compliance programs that requires Service Providers, Banks and high-volume Merchants to follow strict security guidelines, including: Building and maintaining a secure network. Protecting cardholder data. Maintaining a vulnerability management program. Implementing strong access control measures. Regularly monitoring and testing networks. Maintaining an information security policy. In accordance with these guidelines and with a third-party security assessment, PSP Card Services has been issued a certificate of PCI Compliance toward the requirements of the Payment Card Industry (PCI) Data Security Standards (DSS) validation methods. Merchant complience levels as defined by Visa: Merchant Level Description 1 Any merchant &#8212; regardless of acceptance channel &#8212; processing over 6M Visa transactions per year. Any merchant that Visa, at its sole discretion, determines should meet the Level 1 merchant requirements to minimize risk to the Visa system. 2 Any merchant &#8212; regardless of acceptance channel &#8212; processing 1M to 6M Visa transactions per year. 3 Any merchant processing 20,000 to 1M Visa e-commerce transactions per year. 4 Any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants &#8212; regardless of acceptance channel &#8212; processing up to 1M Visa transactions per year. [\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;PCI Educational Resources&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566493150614{padding-top: 20px !important;padding-right: 5% !important;padding-left: 5% !important;}&#8221;]We invite you to explore the educational materials that best meet your level of expertise. PCI Security Council continually adding new materials in formats that address all learning modalities. As a community, we rely on your input. If you know of some great PCI educational materials from independent sources, please tell us about them and we may share them here to help our community grow. VIEW ALL MATERIALS[\/vc_column_text][\/vc_column][vc_column width=&#8221;1\/2&#8243;][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;Who does PCI apply to?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532462987{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]PCI compliance applies to all businesses accepting credit and debit cards payments, regardless of their size or their nature. Even tiny merchants using a mobile app on the weekend are required to meet the PCI Standard. PCI is the world&#8217;s largest security standard, as it applies to millions of merchants, processors, ATM companies and other service providers world-wide.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;Why do I have to be compliant?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532449580{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]To avoid getting breached and losing credit card numbers! Fines imposed by the card-brands in the event of a breach can be extremely costly. In this digital age all businesses should want to protect themselves.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;I&#8217;ve been processing for years, why now?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532432630{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]With the release of PCI version 3 (the newest standard), Visa and MasterCard are now requiring that all processors validate the compliance of all their merchants. To make this process easy and affordable for our merchants, we&#8217;ve put together a PCI program that is included as part of our merchant services.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;My provider is compliant, does that mean I&#8217;m compliant?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532418832{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]The short answer is no. While it is crucial to use point-of-sale providers, shopping carts and payment processors that are compliant, you are still responsible for your own staff and environment. A virus-infected computer or a dishonest staff member is all it could take to have someone steal credit card numbers from your business.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;If my business has multiple locations do I need to validate PCI Compliance for each location?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566532386667{padding-top: 20px !important;padding-right: 5% !important;padding-bottom: 20px !important;padding-left: 5% !important;}&#8221;]Unless each location processes under a different Tax ID then you are only required to validate once annually for all locations. You may also be required to submit quarterly passing network scans by a PCI SSC Approved Scanning Vendor (ASV), if applicable.[\/vc_column_text][tm_heading style=&#8221;above-thick-separator&#8221; tag=&#8221;h5&#8243; custom_google_font=&#8221;&#8221; google_fonts=&#8221;font_family:Poppins%3A300%2Cregular%2C500%2C600%2C700|font_style:700%20bold%20regular%3A700%3Anormal&#8221; font_weight=&#8221;700&#8243; text_transform=&#8221;capitalize&#8221; text_color=&#8221;secondary&#8221; text=&#8221;What are the penalties for noncompliance?&#8221; letter_spacing=&#8221;.02&#8243;][vc_column_text css=&#8221;.vc_custom_1566493324485{padding-top: 20px !important;padding-right: 5% !important;padding-left: 5% !important;}&#8221;]Noncompliance can be very costly and although the payment brands fine the acquiring bank and not the merchant directly, penalties make their way downstream and could result in increased transaction fees or even termination of the banking relationship. An acquiring bank faces anywhere from $5,000 to $100,000 per month for PCI compliance violations.[\/vc_column_text][\/vc_column][\/vc_row]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-194","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/pages\/194","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/comments?post=194"}],"version-history":[{"count":1,"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/pages\/194\/revisions"}],"predecessor-version":[{"id":5903,"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/pages\/194\/revisions\/5903"}],"wp:attachment":[{"href":"https:\/\/pspservicesco.com\/index.php\/wp-json\/wp\/v2\/media?parent=194"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}