The payment card industry or PCI, has standards that must be followed to ensure security. If you are a small business, you still have to do a self audit on your security measures. The larger the company, the larger security and compliance that you have to perform. It is extremely important to do this if you are a victim of a security breach you are subject to legal action and fines from the credit card companies as well as legal action from those who is information was compromised as well as a bad reputation for your company.
Key Takeaways:
- PCI compliance documentation for small businesses is based on processing volume.
- A questionnaire and a security scan should be sufficient if a business processes less than 20,000 credit card transactions a year.
- Visiting PCI’s website, Trust Guard, is useful, as the site can test for vulnerabilities and aid in filling out self-assessments.
“if you choose a self-hosted option, you are responsible for maintaining a PCI compliant checkout and payment data security standards yourself.”
Leave a Reply