| |||||||
| Merchant Resources Useful links to industry tools and resources for merchants. |
| Reporting Fraud or a Scam? If you are reporting fraud or a scam, please be sure to include all relevant details including names, contact information of the other entity, website information and all related details to better assist in alerting fellow members. |
| Attention: If you have received an email you believe may be fraudulent, please send the complete email and headers to fraudwatch@chargebackforum.com immediately. Welcome to the Chargeback Forum! You are viewing this site as a guest. You are welcome to continue browsing the Chargeback Forum as a guest or register and take part in these in incredible benefits:
All this and much more is available absolutely free when you register, so sign up today! If you have any problems with the registration process or accessing your account, please contact support. Having a problem with chargebacks or fraud and need immediate assistance? Contact us directly by calling (718) 841-7027 and ask to speak to a chargeback specialist. |
![]() |
| | LinkBack | Thread Tools | Search this Thread | Display Modes |
| | #1 (permalink) |
| Administrator Join Date: Feb 2007
Posts: 220
Rep Power: 10 ![]() | Per the Payment Card Industry (PCI) Data Security Standard set up in June of 2005, all businesses that accept credit cards and secure customer information need to be PCI compliant. However, the level of compliance varies on the merchant, though it’s never a bad idea to be seen as a secure business to your customer. Developed by the four major credit card companies – Discover, American Express, Visa, and Mastercard – PCI was created to give customers the added security of knowing that their information was safe once it was given to a business. Any of the transaction or account information as given to the business is required to be confidential and safe from hackers and other computer infiltrators. All merchants who accept credit cards need to be PCI compliant or risk having their accounts suspended and fined or even terminated. There are two steps involved in becoming PCI compliant. One is that businesses need to pass scans of their systems on a quarterly basis. These scans will be conducted by an independent scanning service like ScanAlert. These scans will need to be done at every internet access point, server, and connection. The next step is that ScanAlert, or another independent scanner, will provide you with a questionnaire that will ask you about your security measures and how you feel they are working for you. These questions are provided with an online wizard tool. You can expect to pay annual fees to help keep your website PC compliant and scanned at regular intervals. You can also opt for a Hacker Safe logo on your website from various scanning companies that will scan your site on a daily basis to give your customers the ultimate feeling of security. You will also want to look for scanning services that can provide you with repairs on parts of your system that might be vulnerable to attack or security compromises. This will allow you to keep any prying eyes out of your personal records as well as the records of your customers. And just what are you trying to keep them safe from? Hackers that can get into the Internet files of your server can access confidential information from your customers, allowing them to find out credit card numbers, contact information and even identification information that can help in stealing an identity. All of these security breaches can not only compromise the security and privacy of your customers, but will also diminish the overall respect of your website and its commitment to customer safety. You owe it to your business and to your clients to provide them with shopping in a PCI compliant environment. Customers will return to you when they know that they can count on their information being used only for that purchases that they want to make. In this day and age of identity theft and credit card fraud, you just can’t afford to take any chances – and when you do, you might find yourself without the ability to take credit cards anymore. Brought to you by MerchantTalk |
| | |
| | #4 (permalink) |
| Junior Member Join Date: Jul 2007
Posts: 1
Rep Power: 0 ![]() | Further to the above, you might find this free white paper useful, to help you better understand PCI DSS compliance: PCI DSS Made Easy. In a nutshell, this white paper explain the requirements to achieve PCI companies, as well as the implications of non-compliance. |
| | |
| | #6 (permalink) |
| Junior Member Join Date: Aug 2007
Posts: 1
Rep Power: 0 ![]() | The safest transaction model (for authentification and processing of data) as I understand was using SSL protocols like those employed by authorizenet and verisign? Do you think that more security will actually help or rather that is presents a false front luring people into making risky card absent transactions? Even a fraudulent company can present with the latest compliance to the customer. |
| | |