Customer Support | Free Rate Comparison VerePay Login
BankCard Central Logo
How can we help you?   
Can't find what your looking for? Click Here  
  Accept Credit Cards Today!  
Merchant Processing Solutions Credit Card Equipment Software
Credit Card Processing VerePay PrismPay Recurring Billing Customer Validation Payment Options Business Diversity Credits Payment Gateway PCI Compliance Check Services Loyalty Program Gift Cards Merchant Cash Advance Online Ordering System Bill Payment Suite Merchant Accounts
Domain Registration SSL Certificates Shopping Carts Web Hosting Website Security Search Engine Optimization Internet Marketing Email Marketing Mobile Marketing

PCI Compliance / Website Security

Payment Card Industry Security Standards Council (‘PCICo’) defines the standard for securing Personal Account Numbers (‘PAN’) and personally identifiable information (‘PII’), wherever it is located. Compliance is required of all entities storing, processing, or transmitting cardholder data. Acquiring Banks must comply with PCI and are responsible for ensuring the compliance of their merchants for all payment channels, including retail (brick-and-mortar), mail/telephone-order, and ecommerce.

Click here for Demo of the PCI ToolKit Wizard.

PCI Compliance Toolkit An interactive Web Application tool for merchants to complete the PCI DSS compliance requirements and SAQ worksheets
Home >> PCI Compliance >>
Share |

Cardholder Data Security Requirements

PCI is a result of collaboration between VISA® andMasterCard®to create common industry security requirements.  Other card companies operating in the U.S. have also endorsed the Standard within their respective programs.

The PCI Requirements

  1. Install and maintain a working firewall to protect data
  2. Keep security patches up-to-date
  3. Protect stored data
  4. Encrypt data sent across public networks
  5. Use and regularly update anti-virus software
  6. Restrict access by "need to know"
  7. Assign unique ID to each person with computer access
  8. Don't use vendor-supplied defaults for passwords and security parameters
  9. Track all access to data by unique ID
  10. Regularly test security systems and processes
  11. Implement and maintain an information security policy
  12. Restrict physical access to data

How PCI Works:

Merchants are responsible for using service providers that are PCI-compliant.  VISA® orMasterCard®may impose a fine on non-compliant merchants and in severe cases bar the merchant from accepting VISA® orMasterCard®Credit Cards. 

Merchants receive protection from fines in the event of a data compromise when their merchant service provider is found to be PCI-compliant at the time of the security breach. Merchants are, however, subject to fines—up to $500,000 per incident—if they are not PCI compliant at the time of the breach.

PCI Groups Defined

Merchant Level Selection Criteria Compliance Actions:
Comply with PCI Data
Security Standards
1 More than 6 million VISA® transactions processed annually Required
2 500 thousand to 6 million VISA® transactions processed annually Required
3 Less than 500 thousand VISA® transactions processed annually Required

Validation Actions

Security Audit
1 Required
2   Required
3   Recommended

  Quick Guides:

Sign Up for the
Possibilities Newsletter

  Related Topics:
  • Payment Processing Security
  • PCI Requirements
  • PCI Compliance Resources

      1321 Burlington Street, Suite B North Kansas City, MO 64116  
    BankCard Central is a registered ISO/MSP of Merrick Bank, South Jordan, UT
    All Content © 2013 Copyright | Privacy Policy | Sitemap | ROR
    Bottom Border
    Credit Card Processing | Merchant Cash Advance | eCommerce Solutions | Credit Card Processing Rates | PCI Compliance
    Residual Income Opportunities | Payment Gateways | Gift Card Program | Loyalty Card Programs | Shopping Cart Solutions | Blog
    Technical Support | Credit Card Processing FAQs | About BankCard Central | Partners | Merchant Testimonials | Contact Us
    * Applicable and monthly service charges still apply. No application Fees.

    Third-party marks and brands are the property of their respective owners.