PCI DSS COMPLIANCE
What is PCI DSS?
PCI DSS, or the Payment Card Industry Security Data Standard, is a worldwide standard, a set of 12 rules that any business, no matter how large or small or online or in a physical store, who accepts credit and debit cards must adhere to. These rules were set up to help businesses process card securely, reduce card fraud and to protect customer’s sensitive data.
A payment service provider must be PCI DSS compliant, E1Pay is compliant with level 1, the highest level of compliancy.
The Council is responsible for managing the security standards, while compliance with the PCI set of standards is enforced by the founding members of the Council: American Express, Discover Financial Services, JCB, MasterCard and Visa Inc.
What does PCI mean for a business?
Using our integrated API payment solution means you’ll be need to comply fully with the PCI DSS — even if you do not store customer details.
Our clients are automatically PCI compliant when using our services. In order to mitigate the burden of complex and cost-intensive issues for merchants, we constantly inform you of relevant changes and offers payment interfaces that make a PCI-DSS certification unnecessary and that offer the highest-available degree of security.
The benefits of PCI Compliance with E1Pay
You are PCI-DSS-compliant from day one
No compliance issues with credit card payments
No extra effort for secure transactions with credit card payments
You can focus on your business, instead of compliance
Save up to $100,000 per year on PCI compliance
Highest-available degree of security – Level 1 compliance
E1Pay PCI DSS Policy
E1Pay is PCI DSS compliant. The Payment Card Industry Data Security Standard (PCI DSS) is an information security standard for organizations that handle branded credit cards from the major card schemes.
The PCI Standard is mandated by the card brands and administered by the Payment Card Industry Security Standards Council. The standard was created to increase controls around cardholder data to reduce credit card fraud. Maintaining security of cardholder data is very important to E1Pay.
Upon agreement to the E1Pay terms, E1Pay secures and protects the cardholder data according to the current applicable PCI standard for the life of the data needing to be retained. E1Pay acknowledge these responsibilities as being the organization responsible for ensuring the safe handling and storage of sensitive customer credit card information and data for the E1Pay services.
E1Pay merchants must implement E1Pay’s solution according to E1Pay’s implementation guidelines. By doing so merchants assign their PCI DSS responsibilities for sensitive customer credit card information and data collected to E1Pay for transactions processed by E1Pay. Merchant’s may have other PCI DSS responsibilities that are independent of the E1Pay’s Merchant Services Agreement (MSA). It is the Merchant’s sole responsibility to remain informed of their PCI obligations and compliance status.
E1Pay’s Attestation of Compliance (AoC) is available upon request.
Please refer the compliance status on the below link. Click to validate the status.
For further information please visit the official PCI org website www.pcisecuritystandards.org.