Why comply with PCI DSS 3.0 Security Standards?

As a merchant, you play an important role when it comes to safeguarding card information. For this reason the payment card industry requires that you satisfy some base level requirements regarding the safe handling and transmission of credit card data. If you are an Intuit Payments customer, Intuit includes "PCI Services" as part of the services that you receive. 

The PCI services include the self-assessment tools and system vulnerability scanning services designed to reduce credit card fraud and security breaches. These measures are prescribed in a set of guidelines called the Payment Card Industry Data Security Standard (PCI DSS), which was established by five major card brands (Visa, MasterCard, American Express, Discover and JCB). Compliance with PCI DSS is mandatory for merchants accepting card payments. 

The PCI DSS requires that qualified experts be engaged to help merchants meet their obligations. Intuit has selected ControlScan to play this role for Intuit payment customers because of their focus on small- and medium-sized merchants. We encourage you to take advantage of the ControlScan powered "PCI Services" included as part of your Merchant Account service.

To begin this important process, simply login to the Intuit Merchant Service Center portal by visiting https://merchantcenter.intuit.com/, in the "Account" navigation menu click "Customer Credit Card Protection", click "Visit your ControlScan Account" and enter your credentials.  Username is your Merchant ID.

 Why should you, as a merchant, comply with the PCI Security Standards? At first glance, especially if you are a smaller organization, it may seem like a lot of effort, and confusing to boot. But not only is compliance becoming increasingly important, it may not be the headache you expected.

Compliance with data security standards can bring major benefits to businesses of all sizes, while failure to comply can have serious and long-term negative consequences. Here are some reasons why.

  • Compliance with the PCI DSS means that your systems are secure, and customers can trust you with their sensitive payment card information:
    • Trust means your customers have confidence in doing business with you
    • Confident customers are more likely to be repeat customers, and to recommend you to others
  • Compliance improves your reputation with acquirers and payment brands -- the partners you need in order to do business 
     
  • Compliance is an ongoing process, not a one-time event. It helps prevent security breaches and theft of payment card data, not just today, but in the future:
    • As data compromise becomes ever more sophisticated, it becomes ever more difficult for an individual merchant to stay ahead of the threats
    • The PCI Security Standards Council is constantly working to monitor threats and improve the industry’s means of dealing with them, through enhancements to PCI Security Standards and by the training of security professionals
    • When you stay compliant, you are part of the solution – a united, global response to fighting payment card data compromise
  • Compliance has indirect benefits as well:
    • Through your efforts to comply with PCI Security Standards, you’ll likely be better prepared to comply with other regulations as they come along, such as HIPAA, SOX, etc.
    • You’ll have a basis for a corporate security strategy
    • You will likely identify ways to improve the efficiency of your IT infrastructure
  • But if you are not compliant, it could be disastrous:
    • Compromised data negatively affects consumers, merchants, and financial institutions
    • Just one incident can severely damage your reputation and your ability to conduct business effectively, far into the future
    • Account data breaches can lead to catastrophic loss of sales, relationships and standing in your community, and depressed share price if yours is a public company
    • Possible negative consequences also include:

      • Lawsuits
      • Insurance claims
      • Cancelled accounts
      • Payment card issuer fines
      • Government fines

You’ve worked hard to build your business – make sure you secure your success by securing your customers’ payment card data. Your customers depend on you to keep their information safe – repay their trust with compliance to the PCI Security Standards.

 

Please visit https://www.pcisecuritystandards.org/documents/PCI_DSS_v3.pdf to download the PCI DSS 3.0 Requirements and Security Assessment Procedures document so that you may become prepared and take the necessary steps to become PCI DSS 3.0 compliant.

You may also visit the PCI Security Standards Council website at https://www.pcisecuritystandards.org/

Have more questions? Submit a request

0 Comments

Article is closed for comments.
Powered by Zendesk