CardFlex: PCI Credit Card Compliance: Is Your Business Affected?

Not only is PCI credit card compliance important; it is beneficial for a business regardless of its size. When they fail to comply businesses open the door to numerous risks.

Costa Mesa, CA, January 31, 2013 --( CardFlex ( is a leading payment processing provider. Businesses that process credit card payments and store customer credit card information know that there are numerous federal and state regulations with which they must comply. Any business that processes, stores, or transmits customer credit card information is required to follow Payment Card Industry or PCI credit card compliance.

Why Comply?
Smaller businesses often wonder if they need to be PCI compliant—especially with the added effort and costs. Not only is PCI credit card compliance important; it is beneficial for a business regardless of its size. When businesses fail to comply, they open the door to numerous risks, such as:

· Using unsecure systems, which can result in a lack of trust from paying customers
· Customers are unlikely to repeat business once they find out they are not PCI compliant
· Their reputation and business partners may be at risk
· Their company is vulnerable to security breaches, identity theft, and the associated legal ramifications
· Their company may face lawsuits, insurance claims, cancellations, payment issuer fines, and government fines

PCI credit card compliance offers businesses a variety of benefits that have long-term effects on their company. When they comply their company takes advantage of:

· Secured systems that offer customers trustworthy, safe payment options
· Improved reputation with credit card issuers, payment brands, and acquirers
· Improved reputation with business partners, including financial institutions
· Increased protection against identity theft and security breaches since compliance ensures they are up-to-date on the latest security technology and software

In addition, if businesses are PCI compliant, they set the groundwork to become compliant with other federal regulations, such as HIPAA or SOX—if they apply to their industry. PCI credit card compliance also helps build a base for corporate security and allows businesses to identify ways their IT infrastructure might be at risk for breaches in the future.

How to Get Started
Each credit card company has its own program for PCI credit card compliance. Visa, for example, offers a PCI Compliance Accelerated Program that breaks down requirements based on the number of transactions processed each year. The PCI Security Standards Council offers advice for new and existing businesses on how to become compliant regardless of the credit card company for which they are processing. Some basic steps to get started include:

· Buying and using approved PIN devices at point-of-sale terminals
· Buying and using validated payment software in point-of-sale terminals
· Never storing customer or cardholder information on paper or computer
· Using an advanced firewall to protect all computers and networks in-house
· Ensuring wireless routers are encrypted and password protected
· Using strong passwords—meaning those with a combination of letters and numbers—on all applications, computers, and point-of-sale terminals
· Checking PIN entry devices to make sure skimming devices or software are not installed on them
· Teaching employees the value of protecting cardholder information and boosting the company’s security overall

Even if businesses only process a few credit card transactions each year, PCI credit card compliance protects them from costly legal consequences and the loss of customer trust associated with security and data breaches.

Ensure PCI credit card compliance while reducing transaction costs, providing better customer service, and doing business virtually anywhere with cutting-edge technology by partnering with an innovative merchant payment processing company. Visit or call 866.634.3044 to see how.
Scott Siders