The PCI DSS Compliance

In response to the increasing amount of fraud and payment card data theft, the PCI Consortium (Visa, MasterCard, American Express, Discover and JCB) created the PCI-DSS (Payment Card Industry Data Security Standard) standard. The objective of this standard is to increase security and protection of customer's payment card data.

Merchants who don't comply with the PCI Standard are exposed to serious fines and penalties, such as the decrease of their credit score.

In addition, since 2010, all Canadian businesses victim of a security breech have, by law, the obligation to disclose the breach's details. A security failure can have important repercussions on the organization's reputation and may compromise regular business activities.

Yes. All merchants accepting payment cards have to comply. More precisely, any organization that stock and transfer payment card data have to comply with the standard's 12 requirements. The requirements the merchants have to comply with are based on the number of transactions that are processed per year.

All organizations should view the PCI Standard as a support for best practices instead of an inflexible frame restricting them in their growth. Compliance can be achieved by various means and at various costs depending on the nature of the organization and business activities.

Our PCI-DSS Compliance Solution

Waveroad ConsulT developed a unique simplified practice to suit SMB needs. The compliance process is split in different steps that can be implemented as a standalone service or as a full compliance solution.

  

Please contact us at info@waveroad.ca for any question regarding our equipment management service.