The Payment Card Industry Data Security Standard (PCI-DSS) is a worldwide standard that was setup to help business process card payments securely & reduce card fraud.
What is PCI-DSS?
From large corporations to small Internet stores, compliance with the Payment Card Industry Data Security Standard (PCI-DSS), is essential for all merchants who accept credit or debit card payments. The size of your business depends on your compliance requirements such as how many transactions you process each year, the type of transactions such as phone or web, and if you need to store credit or debit card data.
Cyprium is fully PCI-DSS compliant and the market leading payment gateway of preference we use to provide many of our services, is certified as PCI-DSS Level 1. This is the highest level of PCI-DSS compliance. The platform includes a range of fraud management services to help secure online & phone payments reducing your exposure to fraud. The payment gateway is used by large institutions including government sectors, blue chips & a wide range of business sectors giving you peace of mind that your company’s transactions are secure.
The majority of payment solutions provided by Cyprium are designed to remove your company out of scope of PCI-DSS compliance however, we recommend you are aware of the following information regardless.
Why is PCI-DSS Compliance Important?
PCI-DSS compliant means you are keeping your customers valuable information safe and secure and out of the reach of people who could use the data in a fraudulent way. Not storing card data reduces the risk that your customers will be affected by fraud. If you don’t need to store card data then don’t.
If you suffer a data breach and you are not PCI-DSS compliant you could incur Card Scheme fines for the loss of this data and may be liable for the fraud losses incurred against these cards and the operational costs associated with replacing the accounts.
Unfortunately data breaches occur regularly and e-commerce sites are a very frequent target from hackers who often successfully compromise e-commerce sites. It is imperative for you to ensure that you have implemented all of the relevant controls in PCI-DSS. You are responsible for looking after your customer’s card data, regardless who processes the data on your behalf.
More information about PCI-DSS can be found on the PCI-DSS Security Council website. https://www.pcisecuritystandards.org
Cyprium are happy to answer any questions about PCI-DSS Compliance & how our products can help.
Call us today on 0330 333 8444 for help or advice or complete our online request form.