Visualsoft is currently in the process of achieving PCI Compliance Level 1, which will make us one of the few eCommerce suppliers in the UK to be approved by the legislation.
To achieve this, Visualsoft is undertaking a rigorous independent audit to reach the Level 1 PCI DSS accreditation, which is a standard that should be reached by all UK eCommerce solution providers, but in a lot of cases is not.
PCI (Payment Card Industry) compliance standards were introduced by a number of major credit card issuers to protect personal information and ensure security when transactions are processed using a payment card. All members of the payment card industry, such as financial institutions, credit card companies and merchants, must comply with these standards if they want to accept credit cards. Failure to meet compliance standards can result in fines of up to £10,000 from the credit card companies and banks, and could even result in the loss of the ability to process credit cards.
There are six categories of PCI standards that must be met in order for a retailer to be deemed compliant.
* Maintain a secure network
* Protect cardholder details
* Maintain a vulnerability management programme
* Implement strong access control measures
* Regularly monitor and test networks
* Maintain an information security
Many companies claim to be PCI compliant, although it may be that the company has not actually invested in the rigorous audit process involved in becoming PCI compliant. Some eCommerce companies may state that they are PA – DSS compliant, which would mean that they have validated that their payment application complies with PCI DSS, but only the payment application part of the 12 requirements. This means that it is still the customers responsibility to make sure that the hosting company is PCI compliant.
Visualsoft are now only a short time period away from gaining PCI Compliance Level 1 status. For more information on what this means for your online business, contact us today.