Login to eMerchantGateway
eMerchant eMerchant
  • We Offer
    • column1
      • Our Services
        • Merchant Accounts
        • Payment Gateways
        • Virtual Terminals
        • Retail Terminals/POS
        • eCommerce Platform
        • Business Loans
    • Column 5
      • Gateways
        • eMerchantGateway
        • Authorize.Net
        • USAePay
        • Cybersource
        • PayFlow Pro
        • NMI
    • Column 5
      • Partner Integrations
        • eCommerce Integration
        • Enterprise Software Integrations
        • Retail Terminals/POS Integrations
    • Column 4
      • Payment Security
        • Fraud Prevention
        • Payment Tokenization
        • EMV
        • PCI Compliance
    • column2
      • Resources
        • What is Payment Processing?
        • New Merchant Accounts
        • eCommerce Merchants
        • How are Rates Calculated?
        • blog
  • eCommerceCart
    • cropped-eCommerce_logo_new

      eMerchant’s own all-in-one ecommerce platform offers 450 built-in features and the eMerchantGateway included for robust capability and unparalleled value for your website. We can create a comprehensive plan for your online store that includes assistance with migration and all the integrations you require.

      Learn More
      eCommerceCart_Stack
      cropped-eCommerce_logo_new

      eMerchant’s own all-in-one ecommerce platform offers 450 built-in features and the eMerchantGateway included for robust capability and unparalleled value for your website. We can create a comprehensive plan for your online store that includes assistance with migration and all the integrations you require.

      Click here to go to eCommerceCart.com

      eCommerceCart_Stack
Login to eMerchantGateway
Get Started
eMerchant

What is PCI Compliance and why does it matter?

Home / blog / eCommerce / What is PCI Compliance and why does it matter?

What is PCI Compliance and why does it matter?

By eMerchant ineCommerce

If you are an e-commerce or brick-and-mortar merchant, you’ve probably heard the term “PCI-DSS Compliance” – commonly shortened to PCI Compliance – at least a few times. But while many businesses talk about this concept, few actually understand what it is and what it means for their payment processing. eMerchant knows the importance of PCI Compliance and is here to help your business meet this credit card industry standard.

A Brief History of PCI-DSS Compliance

Prior to 2006, every credit card company had their own data security standards for payment processing, and these standards could fluctuate wildly. Recognizing the need for a common industry standard, the five major brands – Visa, MasterCard, American Express, Discover and JCB – created the Payment Card Industry Security Standards Council (PCI-SSC). This council subsequently developed the Payment Card Industry Data Security Standard (PCI-DSS) that was officially implemented on August 7, 2006. This standard is not a federal law, but its requirements have been enforced by these credit card companies to this day, and any merchant who fails to comply risks have their credit card processing ability revoked.

PCI Compliance Basics

Any merchant or organization that transmits, processes, stores or otherwise accepts credit card and debit card information – whether they accept this info online, in person or over the phone – must follow PCI security standards. All cardholder data must be hosted and protected following a set of 12 security requirements. Data that this applies to includes the full Primary Account Number, cardholder name, expiration date, service code and all Sensitive Authentication Data. Note that while using a third-party payment processer can reduce a company’s risk exposure, it does not exempt them from PCI requirements.

Levels of PCI Compliance

There are four PCI Compliance levels, which are based on how many credit card transactions are processed within a 12-month span. For e-commerce merchants, these levels range from Level 4 (<20,000 annual transactions) up to Level 1 (<6 million annual transactions). Compliance standards vary within each level as do the cost – Level 4 companies may pay as little as $700 a year to remain PCI compliant, while Level 1 companies could end up spending more than $50,000 a year. Each level requires quarterly network scans by approved vendors, an annual Attestation on Compliance and either a self-assessment or a report by a qualified assessor.

Non-Compliance Penalties and Other Consequences

At any level, the penalties for failing to comply with PCI-DSS standards can be severe. Each credit card brand and bank has their own fine schedules, but for Level 1 merchants, fines can start at up to $10,000 per month and increase if a business remains non-compliant. Payment processors often charge their own monthly non-compliance fees or increase transaction fees for not meeting the standards. Breaches in cardholder data can mean additional fines, and in extreme cases, temporary or permanent suspension of the ability to accept credit cards. This comes on top of damaging reputation and trust with customers and suppliers.

Final Thoughts

As the merchant who decides to accept credit and debit card payments, it is ultimately your responsibility to become PCI compliant. But for many smaller businesses, it can be relatively simple to implement the requirements. If you choose eMerchant as your credit card payment processor, we will help you stay on top of payment information security and remain a successful merchant.

  • Mobile Payment Update: Is Facial Recognition a possibility for mobile payment programs?
    Previous PostMobile Payment Update: Is Facial Recognition a possibility for mobile payment programs?
  • Next PostFraud/ Security Update: Why is payment card data still the most frequent target for fraud?
    Mobile Payment Update: Is Facial Recognition a possibility for mobile payment programs?

Related Posts

Outgrowing Flat Rate Merchant Services
eCommerce

Outgrowing Flat Rate Merchant Services

Avoid Abandoned Shopping Carts Online
eCommerce

Avoid Abandoned Shopping Carts Online

The 2020 Holiday Shopping Season: 4 Trends to Watchs
eCommerce

The 2020 Holiday Shopping Season: 4 Trends to Watchs

Recurring Payment Options and Benefits
eCommerce

Recurring Payment Options and Benefits

Services:

  • Payment Gateways
  • Merchant Accounts
  • POS Retail Terminals
  • Virtual Terminals
  • eCommerce Platform
  • Business Loans

About Us:

  • Message from the CEO
  • Management Team
  • Job Opportunities
  • Contact Us
  • Sitemap

Websites:

  • eMerchant.com
  • eCommerceCart.com
  • eMerchantAssociation.com

Subscribe to Newsletter:

emerchant_header_1

Irvine Office:
78 Discovery
Irvine, CA 92618 USA
(866)979-0260

 

Email:

  • talk@emerchant.com
  • support@emerchant.com

About:

As a premier eCommerce Merchant Services Provider, eMerchant has been specializing in eCommerce Payment Solutions since 2002.

© 2020 copyright eMerchant Inc.

eMerchant is a registered ISO/MSP with Fifth Third Bank, 38 Fountain Square Plaza, Cincinnati, OH 45263.

Copy