Join as a member discover a wide range of services...
What You Need To Know About PCI Compliance
-
Tanim Minha
- 29/03/2022
Discover more
How To Avoid Unnecessary Charges On Your Merchant Bill
Business growth can lead to increased security risk. For SME's,...
Why Strong Customer Authentication (SCA) Matters In-Store
Strong Customer Authentication (SCA) is a security measure embodied within...
The Impact of the Interchange Fee Dispute
Tensions between retailers and card networks have been at an...
How Your Business Can Prepare For Black Friday
We are anticipating a Black Friday boom! Are you well...
What is PCI Compliance?
The Payment Card Industry Data Security Standard (PCI DSS), introduced in 2006, is a set of requirements that ensure that all companies that process, store, and transmit credit card information maintain a secure environment.
Each year businesses across the UK are sent the PCI DSS questionnaire. The questionnaire is complex and time-consuming, leaving many business owners feeling lost and unsupported.
Is Compliance Important?
PCI compliance is one of the most important aspects of a modern business. The importance of being compliant is ever-growing particularly with the transition to a more cashless society.
However, despite the importance of PCI compliance, 80% of UK businesses are not compliant. Failure to demonstrate compliance can result in a costly monthly fine of between £4000 to £80,000.
Furthermore, data breaches that are found to be the result of inadequate data protection can lead to severe GDPR fines.
How do I manage my PCI compliance?
To be PCI compliant, businesses need to demonstrate that they meet each of the twelve PCI principles. The 12 Principles are:
- Installing and maintaining a firewall configuration to protect Cardholder data
- Avoiding vendor-supplied defaults for system passwords and other security parameters
- Protecting stored cardholder data
- Encryption transmission of cardholder data across open, public networks
- Protecting all systems against malware and regularly updating anti-virus software and programmes
- Developing and maintain secure systems and applications
- Restricting access to cardholder data
- Identifying and authenticating access to system components
- Restricting physical access to cardholder data
- Tracking and monitoring all access to network resources and cardholder data
- Regularly testing security systems and processes
- Maintaining a policy that addresses information security for all personnel
How can BMS help you?
At Bespoke Merchant Solutions, we can source a trusted compliance manager who will work with you to understand your business. Your compliance manager will fill out the PCI compliance form for you and keep on top of compliance management, leaving you to get on with what you do best.
Contact us today using the form below if you have any concerns about your businesses PCI compliance, and our team of experts will be happy to help.
More from BMS
BMS Updates
The Benefits of Being a BMS Member
Join as a member discover a wide range of services made especially for smaller merchant businesses looking to find the best way to operate.
February 27, 2023
Payment & Merchant Insights
How To Avoid Unnecessary Charges On Your Merchant Bill
Business growth can lead to increased security risk. For SME’s, much of the mitigating risk management will rely on the tools available. BMS can help ensure compliance.
January 26, 2023
Payment & Merchant Insights
Why Strong Customer Authentication (SCA) Matters In-Store
Strong Customer Authentication (SCA) is a security measure embodied within The Revised Payment Services Directive (PSD2) as a set of regulations for payments which came into force last year. We’ve devised a quick guide to understanding SCA for your customers, and how BMS can help.
December 19, 2022