Have you done it? -PCI DSS SAQ Compliance
What is PCI DSS SAQ?
Before we start talking about the PCI Data Security Standard SAQ Compliance, and its importance, let’s first remind you what it is. The PCI (Payment Card Industry) Data Security Standard SAQ (Self-Assessment Questionnaire) is a validation tool to assist merchants and service providers in demonstrating their compliance with Payment Card Industry Data Security Standards (PCI DSS) through a self-assessment, as permitted by the payment brands.
There are 4 levels of PCI compliance. Most merchants fall into the Level 4 Merchant category which permits the self-assessment compliance to be done. This is any merchant processing fewer than 20,000 Visa e-commerce transactions per year, and all other merchants — regardless of acceptance channel — processing up to 1 Million Visa transactions per year. If you store card information onsite for recurring billing, this is another level and we can help you move this to a secure gateway, prevent potential fraud and protect you from major fines.
What does it mean to be in PCI Compliance?
Compliance simply means that your business meets the requirements established by the Payment Card Industry (PCI) Security Standards Council. The council is run by the five major credit card companies – Visa, MasterCard, Discover, American Express and JCB International – and is responsible for enforcing the PCI Data Security Standards (PCI DSS). In order to be in compliance, you must meet these standards.
What are the penalties of non-compliance?
The payment brands may, at their discretion, fine an acquiring bank $5,000 to $100,000 per month for PCI compliance violations. The banks will most likely pass this fine along until it eventually hits the merchant. Furthermore, the bank will also most likely either terminate your relationship or increase transaction fee costs.
Have questions or want to complete your PCI DSS SAQ?
Ensuring PCI Compliance
UMS Banking undergoes an annual security audit to validate the company’s PCI DSS (Payment Card Industry Data Security Standard) compliance to that of a Level One (the highest level requiring an onsite audit) organization. Any access to merchant card data is done within a PCI Compliant environment in the company.
We understand the importance and sensitivity of merchant data and make it our top objective to put in place safeguards that meet or exceed industry standards. UMS Banking will continue these actions in our efforts to provide best in class service to you and your business, as well as protect all sensitive credit card and other financial data.