Part of establishing PCI compliance and maintaining it year in and year out is filling out an annual PCI self-assessment questionnaire (SAQ). These questionnaires are designed to accomplish two goals: to help businesses identify weaknesses that need to be dealt with and to help prove to institutions that a company is compliant. But not all companies handle credit cards in the same way, so PCI has put together nine different versions of the SAQ. The difference in length and complexity between the shortest and longest versions is extreme – 22 questions versus 329. As a result, it’s important that companies select the proper SAQ for self-assessments because choosing poorly could result in under-analysis, or alternately, a lot of unnecessary work. Below is a quick review of each SAQ version to help with proper selection.
E-commerce transactions are all about trust. Customers need to feel 100% confident that their personal information and payment details are stored and transmitted with total security, or they simply won’t make a purchase. When breaches do happen, the damage – both financially and psychologically – can be immense, and as a result, businesses simply can’t afford to ignore the seriousness of transaction security. Thankfully, there are some straightforward steps companies can take to keep the bad guys at bay, and the following six practices represent some of the most effective ones.
The average person doesn’t consider the VISA or Mastercard in their pocket to be any different from a company or government credit card – aside from the limit, of course. But there are actually significant differences in how corporate and government cards are used and processed. Those differences mean that not all merchants can accept all types of credit cards, and they also change the way issuing banks view transactions. The result is that merchants who can process these special credit cards – known as Level 3 credit card processing – stand to benefit greatly.
Updating payment equipment by companies to chip cards with embedded microchips has added a level of security to businesses and their customers. Fraudulent transaction risk has significantly reduced due to chip card technology. Implementing point-to-point encryption reduces payment card fraud from counterfeit cards. The liability shift from financial institutions favors applying EMV technology to great effects.
Chargeback prevention is one of the foremost concerns of online merchants. It’s always galling to have to send money in the wrong direction, and it’s even worse when the reason for it is outright fraud. With fraud, you’re not only out a sale but often, you lose your merchandise as well. Fortunately, there are ways to catch most of it before your products hit the shipping stream.