PCI Scanning

The Little Known Fact About Who PCI DSS Applies To:

The Payment Card Industry Data Security Standard (PCI DSS) is a worldwide information security standard defined by the Payment Card Industry Security Standards Council. The standard was created to help payment card industry organizations that process card payments prevent credit card fraud through increased controls around data and its exposure to compromise.

Validation of compliance can be performed either internally or externally, depending on the volume of card transactions the organization is handling, but regardless of the size of the organization, compliance must be assessed annually. Organizations handling large volumes of transactions must have their compliance assessed by an independent assessor known as a Qualified Security Assessor (QSA).

Compliance validation is required only for Level 1-3 merchants and may be optional for Level 4 depending on the card brand and acquirer. Visa's compliance validation details for merchants state that level 4 merchants compliance validation requirements are set by the acquirer, Visa level 4 merchants are "Merchants processing less than 20,000 Visa e-commerce transactions annually and all other merchants processing up to 1 million Visa transactions annually".

Many of our competitors serve medium to large businesses and therefore institute PCI standards in their service. We find that nearly all small businesses that we serve are level 4 merchants, processing less than 1 million Visa transactions annually. It is for this reason we do not add any costly PCI Scanning requirements to our customers.

Click Here To See Plans and Pricing