The Payment Card Industry Data Security Standard (PCIDSS) regulations are there to help protect merchants from card fraud. It is a wide ranging standard and applicable to all merchants that process, store or transmit card data.
The standard is very complicated and your compliance depends on a number of things. These include which payments provider you use to process your card payments, how many transactions you do annually, what type of transactions you do e.g. web, over the phone, Chip and PIN etc. The regulations are very complicated and run to hundreds of pages.
Adelante are a PCIDSS Level 1 Service Provider. This is the highest possible level of accreditation possible and means that you are in good hands when considering your customers card security. For merchants the key to becoming PCIDSS compliant is to try and remove access to card data from your networks and business processes. Adelante have a number of products designed to take the payment process out of scope for PCIDSS. This is done by ensuring card details are entered by the card holder into the Adelante ConnectPay gateway. If your staff and computer systems do not process, store or transmit card data your own compliance becomes much more simple to obtain We do this by:
- Working with the acquiring banks to ensure they understand what technology our customers use
- Ensuring that all card payment processes, even where the customer calls your call centre, are conducted within the Adelante ConnectPay gateway
More information about PCIDSS can be found on the PCI Security Council Website. They are the organisation that manages the standard on behalf of the card schemes.