Jump to content
Sign in to follow this  
Lee

PCI DSS compliant

Recommended Posts

Is the most mind numbingly boggling waist of an hour once a year I have ever had..............

 

Rant over!

 

Lee

Share this post


Link to post
Share on other sites

first I couldn't log in, had a new password sent which didn't work to had to contact them for that. then I just clicked away at the online form. altering things until it got excepted. I didn't understand the questions let alone the answers!

Share this post


Link to post
Share on other sites

Here's a warning,

I have too done this year after year (Global terminal)

And last year had a bill come thru (downloaded) flicking thru the pages found even after passing 100% the test lol they were charging 9.99 per month none compliant fee?

Phoned them, and they said security metrics had not let them know of my passing the test?

Then phoned security metrics who stated they do every time, And going between these companies found out it's a load of ollox

I am now with another company due to anger and have issued an invoice for a refund,

Share this post


Link to post
Share on other sites

We use paypal here terminal with the ipad, non of that bolloxx, in the end it works out cheaper.

78

Few advantages are:

- money instantly on your paypal account & you can transfer to your bank account instantly

- no monthly rentals you just buy it for £49 to £79 and it's yours

- no minimal monthly charge

- once you are established you can get Paypal working capital, it's like a ongoing loans to boost your business

- PayPal Mastercard - use it to pay for goods using money on your paypal account.

 

I have had credit card companies coming to me for years now, some went as far as creating spreadsheets to prove their point, non were successful.

 

They charge for a terminal £19.99 + vat per month in 5 years lease but the guarantee is only for 2 years. If it breaks after 2 years you need to pay for the repair.

 

PCI DSS Compliance is only required if YOU do store customers credit card numbers, otherwise it's their money making scheme.

Edited by Peter@CopyCut

Share this post


Link to post
Share on other sites

I have just swapped from Worldpay (been with the for 15 years without any problems) and i have swapped to Retail Merchant Services.

 

Biggest mistake i have ever made, problem after problem, you do not get a cooling off period as they are a memnership group, i have had to have a replacement terminal and they reckon i have not returned the old one even though they arranged the courrier to collect and they want to charge me for losing it.

 

There are many more issues i could go into but i would not recommend them to anyone EVER !!!.

 

The main issue is that i am not making the savings they promised over what i was paying Worldpay. The salesman has been sent for further training due to all my issues and i am counting down the 1 year and 10 months until i return to Wordlpay.

 

PCI DSS is required by ALL users wether you store details or not, it is all to do with the card reciepts and how they are stored.

Share this post


Link to post
Share on other sites

 

 

PCI DSS is required by ALL users wether you store details or not, it is all to do with the card reciepts and how they are stored.

 

 

Nothing to do with card receipts, but I agree they could make you believe that to take your money.

 

There is widely available information what PCI DSS compliance is

 

http://www.theukcardsassociation.org.uk/security/What_is_PCI%20DSS.asp

 

 

As long as you don't store customers details & their cc numbers in any shape or form, PCI not required.

 

If you have virtual terminal and take CC payments over the phone or in any case handle the card numbers, you do need compliance.

 

 

But if you take payments only as chip & pin, contact less & swipe over encrypted connection (such as paypal here, iZette etc) you don't need anything as receipts don't hold any data which can be used for fraud only last 4 digits of the credit card.

Share this post


Link to post
Share on other sites

The merchant copy of card payments always used to have all but last 4 numbers starred out but not anymore.

The whole number is on the receipt!!

Maybe they do it now so you have to pay!!

Share this post


Link to post
Share on other sites

The merchant copy of card payments always used to have all but last 4 numbers starred out but not anymore.

The whole number is on the receipt!!

Maybe they do it now so you have to pay!!

 

Wow, in this case this is bad, I rather have paypal card machine, it only gives me last four numbers on the receipts.

There is no reason to keep hundreds of receipts with the CC numbers.

 

There is so many providers with secure card readers that I see no reason to be with one which dumps all of the responsibility on your business.

Share this post


Link to post
Share on other sites

Well both Worldpay and RMS and Elavon the bank who actually do my transactions ALL told me i HAD to fill out pci-dss compliance.

 

So that's 3 different companies/banks all saying the same thing and it is down to the whole number being shown on your reciept.

Share this post


Link to post
Share on other sites

PayPal Here is the way forward for low volume. Cheap as chips without all that malarkey of contracts costs and pci. Buy the pad download the app and if you change your mind throw it in the draw or bin with not extra costs.

Share this post


Link to post
Share on other sites

Agreed. I use the Paypal here reader in my shop. Good deal and no contract. The transaction fees also reduce the more you take through it, I think they have a breakdown of the transaction fees on the website based on turnover.

Share this post


Link to post
Share on other sites

So many opinions on this topic, just had another canvasser from some merchant company. He tells me that you can ask your merchant not to print the complete card number, or even to stop printing merchant copy of the receipts. But then his company does all PCI compliance not the customer, as according to him, this is to do with secure connection and storing cardholders details and nothing to do with receipts. The other thing he said if you have a 3g terminal you don't need PCI compliance only they do to prove that on all of their machines connection is secure.

 

Where I'm based they usually coming in packs, I can have 5 canvassers every week. Some understand that I'm not interested, some need to be kicked out.

Share this post


Link to post
Share on other sites

So many opinions on this topic, just had another canvasser from some merchant company. He tells me that you can ask your merchant not to print the complete card number, or even to stop printing merchant copy of the receipts. But then his company does all PCI compliance not the customer, as according to him, this is to do with secure connection and storing cardholders details and nothing to do with receipts. The other thing he said if you have a 3g terminal you don't need PCI compliance only they do to prove that on all of their machines connection is secure.

 

Where I'm based they usually coming in packs, I can have 5 canvassers every week. Some understand that I'm not interested, some need to be kicked out.

 

Retail merchant services told me that but i still had to do it myself, so don't believe anything they tell you as once signed up they get the commision and you will never see them again.

Share this post


Link to post
Share on other sites

We use Barclays as far as I can tell.

We had our machine updated so that it just prints the last 4 digits.

Thought it was some sort of identity protection but would make more sense if it was to save money

Do you have to request this from the provider or can it be done with function codes?

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Sign in to follow this  

×