PCI DSS non compliance
Discussion
Hi,
A little help please! We are being charged a PCI DSS non compliance charge of £10 every month, we are a small(ish) shop where we take card payments over the counter and every so often over the phone. I have looked at the PCI website which does not make much sense and seems to be yet another why extract more cash out of people.
Does anyone know of a company that I can become compliant though as there seems to be many……or any other advice? or a way to get round this, do I need to be compliant??
Cheers
A little help please! We are being charged a PCI DSS non compliance charge of £10 every month, we are a small(ish) shop where we take card payments over the counter and every so often over the phone. I have looked at the PCI website which does not make much sense and seems to be yet another why extract more cash out of people.
Does anyone know of a company that I can become compliant though as there seems to be many……or any other advice? or a way to get round this, do I need to be compliant??
Cheers
I used Trustwave https://www3.trustwave.com/pci-dss-compliance/ 10 minutes to complete the questions and then pay up and it's done.
www.securitymetrics.com
Do it online, rather than call them. Their helpline is US based and seems to be full of sales agents trying to upgrade you to the next level of compliance i.e. more expensive.
Do it online, rather than call them. Their helpline is US based and seems to be full of sales agents trying to upgrade you to the next level of compliance i.e. more expensive.
Big E 118 said:
I used Trustwave https://www3.trustwave.com/pci-dss-compliance/ 10 minutes to complete the questions and then pay up and it's done.
+1I'm just going through this minor nightmare myself for a single terminal used at my parents place. I kind of get where they are coming from.
The Part 12 of PCI compliance talks about staff responsibilities etc, does anyone have a template they have used etc that I could look at or a link?
(I'm moving them back to dial-up once this contract is up)...
Thanks in advance
The Part 12 of PCI compliance talks about staff responsibilities etc, does anyone have a template they have used etc that I could look at or a link?
(I'm moving them back to dial-up once this contract is up)...
Thanks in advance
£10 a month for non compliance is actually cheaper than being compliant!! Although I assume should a data breech happen & it's down to your company you would get royally bum raped?!
If this is for a shop it's easy, it's when you take card payments on your website the fun & games begin. If doing that a good host is vital, we've not had a failed scan for years now thanks to the hosts
(Vidahost & use Security Metrics for PCI)
If this is for a shop it's easy, it's when you take card payments on your website the fun & games begin. If doing that a good host is vital, we've not had a failed scan for years now thanks to the hosts
(Vidahost & use Security Metrics for PCI)Gassing Station | Business | Top of Page | What's New | My Stuff