caffe biscotto
Member
More and more, when I call in an order for supplies, my vendors are telling me they don’t accept credit cards anymore. They request I either send payment by check or I pay COD by cash or check. Now, I'm beginning to see why...
I figured by accepting credit cards, it’s a clean form of payment and it saves me trips to the bank. Also, my credit card terminal provides auto batch outs conveniently at night. I don’t mind the small fee they charge for each transaction. It’s a service for which I am willing to pay. My online store merchant account charges a small fee for each sale I receive through my website, and that’s fine by me too.
Now, because of credit card hackers, just like little geeky terrorists, I am required by my credit card merchant, to become “PCI compliant”. According to my merchant, this is not their doing, but the doing of Visa, MasterCard and others, in an attempt to combat credit card theft.
So, I call my merchant processor, who then directs me to SecurityMetrics. They ask me a number of questions related to how I receive credit card info from my customers. Yadda yadda yadda, I now am required to become PCI compliant by next Wednesday. They say my particular situation will cost me $139.99 per year.
Even if I use strictly PayPal, I still have to fill out a questionnaire and jump through some other hoops.
I’m a compliant kinda guy and I know that only good can come from following a straight line, but this is beginning to test my patience.
Here is the email they sent me, if you’re interested:
Thank you for choosing Sam''s Club and First Data Merchant Services for your Visa, MasterCard and other networks payment processing needs. Please keep reading for essential data security information about your account.
If you are concerned with the validity of this email, please call us at THE CUSTOMER SERVICE NUMBER LOCATED ON YOUR MERCHANT STATEMENT to validate this notice. This is a follow up to communications that were provided recently in your monthly merchant processing statements.
Why am I getting this e-mail?
We are the processor for your Visa, MasterCard and other payment card transactions. We are sending you this email to alert you to urgent actions you are required to take to help combat cardholder fraud and identity theft. THESE ACTIONS ARE REQUIRED BY VISA, MASTERCARD AND THE OTHER PAYMENT CARD NETWORKS.
Data Security Standards Background
In 2005, the payment card networks established a common set of industry requirements designed to help with the safe handling of sensitive payment card account information. These requirements are known as the Payment Card Industry (PCI) Data Security Standard. These PCI security requirements have been phased in over time and now apply to ALL merchants that accept Visa, MasterCard and other payment cards. More information about this security standard is available online at:
http://www.pcisecuritystandards.org
You can find specifics about the Visa and MasterCard security programs at the following sites:
http://www.visa.com/cisp
http://www.mastercard.com/sdp
What do I need to do?
IF YOU ARE NOT PCI COMPLIANT, IT IS URGENT THAT YOU BECOME PCI COMPLIANT WITHOUT DELAY. To help you to achieve PCI compliance, Sam''s Club and First Data Merchant Services has arranged for SecurityMetrics, a certified security assessor for Visa, MasterCard, American Express and Discover Card, to provide you with their "Site Certification" service. You can contact SecurityMetrics at 800-557-4684. You may also contact them online at: http://www.securitymetrics.com.
When do I need to do this?
You have been requested to resolve this by June 10, 2009, so please ACT NOW.
What if I fail to become PCI Compliant?
The Card Associations are very serious about data security. Security breaches have affected merchants of all sizes. If you are compromised, the Association fines can range up to $500,000 per Association. These fines are in addition to other liabilities you may face in connection with the security breach.
To assist in validating this email, Sam''s Club and First Data Merchant Services has included information about PCI DSS Compliance on the following website, http://www.merchantinsider.com/merchant ... tasecurity.
Please be sure to visit this website to learn about PCI DSS! You can get up-to-date information on PCI, including MasterCard's schedule of PCI educational webinars. You also have the ability to ENROLL directly with the SecurityMetrics Level 4 program by clicking ENROLL NOW found under the PCI Compliance for Level 4 Merchants topic.
Your participation in this program is essential in allowing us to help you be protected against any unwanted security breaches. We appreciate your time and assistance.
Sincerely,
Sam''s Club and First Data Merchant Services
I chose red font as a descriptive color of ire, rage and anger, because it's about how I'm felling right now.
...darned geeky hackers and the companies too, that use the excuse to charge for insurance against them and the potential for their geeky activities.
So, I may just go back to paper...
I figured by accepting credit cards, it’s a clean form of payment and it saves me trips to the bank. Also, my credit card terminal provides auto batch outs conveniently at night. I don’t mind the small fee they charge for each transaction. It’s a service for which I am willing to pay. My online store merchant account charges a small fee for each sale I receive through my website, and that’s fine by me too.
Now, because of credit card hackers, just like little geeky terrorists, I am required by my credit card merchant, to become “PCI compliant”. According to my merchant, this is not their doing, but the doing of Visa, MasterCard and others, in an attempt to combat credit card theft.
So, I call my merchant processor, who then directs me to SecurityMetrics. They ask me a number of questions related to how I receive credit card info from my customers. Yadda yadda yadda, I now am required to become PCI compliant by next Wednesday. They say my particular situation will cost me $139.99 per year.
Even if I use strictly PayPal, I still have to fill out a questionnaire and jump through some other hoops.
I’m a compliant kinda guy and I know that only good can come from following a straight line, but this is beginning to test my patience.
Here is the email they sent me, if you’re interested:
Thank you for choosing Sam''s Club and First Data Merchant Services for your Visa, MasterCard and other networks payment processing needs. Please keep reading for essential data security information about your account.
If you are concerned with the validity of this email, please call us at THE CUSTOMER SERVICE NUMBER LOCATED ON YOUR MERCHANT STATEMENT to validate this notice. This is a follow up to communications that were provided recently in your monthly merchant processing statements.
Why am I getting this e-mail?
We are the processor for your Visa, MasterCard and other payment card transactions. We are sending you this email to alert you to urgent actions you are required to take to help combat cardholder fraud and identity theft. THESE ACTIONS ARE REQUIRED BY VISA, MASTERCARD AND THE OTHER PAYMENT CARD NETWORKS.
Data Security Standards Background
In 2005, the payment card networks established a common set of industry requirements designed to help with the safe handling of sensitive payment card account information. These requirements are known as the Payment Card Industry (PCI) Data Security Standard. These PCI security requirements have been phased in over time and now apply to ALL merchants that accept Visa, MasterCard and other payment cards. More information about this security standard is available online at:
http://www.pcisecuritystandards.org
You can find specifics about the Visa and MasterCard security programs at the following sites:
http://www.visa.com/cisp
http://www.mastercard.com/sdp
What do I need to do?
IF YOU ARE NOT PCI COMPLIANT, IT IS URGENT THAT YOU BECOME PCI COMPLIANT WITHOUT DELAY. To help you to achieve PCI compliance, Sam''s Club and First Data Merchant Services has arranged for SecurityMetrics, a certified security assessor for Visa, MasterCard, American Express and Discover Card, to provide you with their "Site Certification" service. You can contact SecurityMetrics at 800-557-4684. You may also contact them online at: http://www.securitymetrics.com.
When do I need to do this?
You have been requested to resolve this by June 10, 2009, so please ACT NOW.
What if I fail to become PCI Compliant?
The Card Associations are very serious about data security. Security breaches have affected merchants of all sizes. If you are compromised, the Association fines can range up to $500,000 per Association. These fines are in addition to other liabilities you may face in connection with the security breach.
To assist in validating this email, Sam''s Club and First Data Merchant Services has included information about PCI DSS Compliance on the following website, http://www.merchantinsider.com/merchant ... tasecurity.
Please be sure to visit this website to learn about PCI DSS! You can get up-to-date information on PCI, including MasterCard's schedule of PCI educational webinars. You also have the ability to ENROLL directly with the SecurityMetrics Level 4 program by clicking ENROLL NOW found under the PCI Compliance for Level 4 Merchants topic.
Your participation in this program is essential in allowing us to help you be protected against any unwanted security breaches. We appreciate your time and assistance.
Sincerely,
Sam''s Club and First Data Merchant Services
I chose red font as a descriptive color of ire, rage and anger, because it's about how I'm felling right now.
...darned geeky hackers and the companies too, that use the excuse to charge for insurance against them and the potential for their geeky activities.
So, I may just go back to paper...
