PCI compliant

[ironplanet uk900]

Has anyone had any dealings with this from barclay card about being, PCI DSS compliant !! reading the literature is like a F***ing chinese puzzle.. sounds like a new way to charge you more for your merchant machines..

 

Any input.....................

[petercoulson]

what a minefield, wikipedia seems to explain ( http://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard ) it but f knows how you will get on with penetration testing. Seems to me to be more about taking internet payments?

[Lee]

Still no the wiser, is this for online transactions or terminal? what have you been asked to do?

 

Lee

[StevenB]

I use barclaycard for my credit card payments. There was a link in one of the info sheets with my monthly statement which took me to an online form I could complete & submit to them with the information they requested.

I filled it in as best I could, but to be honest didn't really understand much of the terminology or quite what I was doing!

In a nutshell, I believe it is all to do with the security of your customers credit card details & the steps you take to keep this sensitive data secure.

[ironplanet uk900]

It's difficult to understand, which normally means your going to be paying for something.

[petercoulson]

It's difficult to understand, which normally means your going to be paying for something.

 

yep, bend over and wait for the pain.

[ironplanet uk900]

Banks are like politicians, constantly thinking up new ways to take your hard earned... Bastards.

[StevenB]

Calm down everybody.

In this instance, I honestly believe it's not about getting more money out of us.

PCI-DSS stands for Payment Card Industry Data Security Standard. In essence it's a box ticking exercise!

It's all about the banks covering their backs by making sure we've accepted responsibility for the security of our customer's credit card details & ensuring the possibility of fraudulent use of these details is minimised.

Primarily relating to online transactions & electronic handling/storage of data, there is also an element relevant for those of us who simply have a terminal in the shop.

Keep all those little paper merchant receipts safe & let your credit card merchant know this & you'll be fine.

[ironplanet uk900]

Calm down everybody.

In this instance, I honestly believe it's not about getting more money out of us.

PCI-DSS stands for Payment Card Industry Data Security Standard. In essence it's a box ticking exercise!

It's all about the banks covering their backs by making sure we've accepted responsibility for the security of our customer's credit card details & ensuring the possibility of fraudulent use of these details is minimised.

Primarily relating to online transactions & electronic handling/storage of data, there is also an element relevant for those of us who simply have a terminal in the shop.

Keep all those little paper merchant receipts safe & let your credit card merchant know this & you'll be fine.

 

 

seems to have an annual charge also......

[StevenB]

Hmmm, I've not paid anything.

I've filled in the form myself for the last 2 years & never been asked for payment.

I think bigger companies have to get an outside body to do the assessment for them, but I've never come across any request for payment for myself.

I must point out I am in no way an expert, and wasn't totally sure I understood what I was doing, I just carried on filling in the boxes as seemed appropriate until the form was complete.

BTW, my card merchant is Barclaycard Business - who's the company that wants to charge - and how much?

[Michael]

BTW, my card merchant is Barclaycard Business -

 

Bit off topic Steven, but I was with Barclaycard business and I switched to Streamline/Cardsave to save some money.

[earlsdoncobbler]

i was going to post somthing about this tonight untill i found this i have my machine with barclaycard, i had a letter about pci compliant and to phone security metrics to ask about it so i did they told me there is a charge of £11.99. but i also see in the letter there is a fee for non compliance 0.15% of all card sales so they are going to get you one way or the other

[earlsdoncobbler]

just seen this on the fsb website

 

 

 

 

What is PCIDSS, we think its maybe a bit of a ripoff from the banks, did we hear you say not again!well as we have had only ONE inquiry about it from our branch members, we take the view that you are quite happy to keep handing out money to the banks when ever they ask you for it, and may be you don't understand why and for what? This seems to have been started by the Bank of Scotland, but will be followed by the rest of the banks, so be ready when its your turn.

 

Here are our thoughts on this PCIDSS , it stands for .Payment Card Industry Data Security Standard it was thought up by Master card and Visa. ( is this one way of getting back some of the loses through fraud?) and there are four levels the level 4 which applies to our shop members who just have a terminal on the counter to send details down a phone line , the terminal being supplied by the company or bank you have signed up to ,so one would assume it would be to the standard required by the PCIDSS, the other thing is if the terminal does not store but only sends card info we don't need to worry about the computer side of things, the only think we think we do need to worry about is keeping the duplicate slips in a safe place , which most of us have been doing for years, so why are they charging us to do it?.