Top 5 PCI Compliance Myths

PCI Standards, PCI Compliance

    TABLE OF CONTENTS

      Listening to the myths and legends of long ago creates a sense of wonder and awe. Indeed an excellent way to pass the time. When it comes to the welfare of your business, myths are not as whimsical. The outcomes of not knowing the facts can be severe. An important topic to know the facts is PCI compliance. Here at Payment Savvy, we are dedicated to educating our merchants about PCI standards and how to protect sensitive data at all costs. Let’s take a look at the most common PCI Compliance myths we come across regularly. 

      Myth 1: My business isn’t high-volume, and PCI doesn’t apply to me. 

      The Blunt Truth: When it comes to PCI compliance, it doesn’t matter whether you process one or 20,000 transactions monthly. If you are accepting electronic payments, you must be compliant.

      Myth 2: Only certain aspects of PCI compliance is mandatory. 

      The Blunt Truth: According to PCI, not one requirement is more crucial than the rest. It is imperative that you take the time to learn all criteria as an electronic payment merchant.

      Myth 3: PCI standards are only applicable to online businesses.

      The Blunt Truth: It doesn’t matter which industry your business falls or operates under. Provided you store, transmit, and process cardholder data, you must adhere to PCI standards. Contrary to what most people think, brick-and-mortar stores are just as susceptible to being compromised as their online counterparts.

      Myth 4: My bank doesn’t require me to be PCI compliant, so I’m exempt. 

      The Blunt Truth: Your bank has nothing to do with whether or not you must adhere to PCI compliance. Provided you accept electronic payment transactions, it is compulsory to be PCI compliant. It is your entire responsibility to ensure compliance.

      Myth 5: I can store cardholder data because I’m PCI compliant. 

      The Blunt Truth: Holding cardholder data is against PCI standards. The regulations clearly state that you shouldn’t store a customers’ card number, PIN, CVV, or similar data fields. If found with any of this information – irrespective of the card brand – you will violate PCI standards.

      Act on Facts and Not Myths

      Don’t assume you know all the PCI standards merchants must adhere to. Definitely don’t listen to Bill at happy hour explaining how to get around being compliant. Protect your business and go straight to the source – contact a reliable merchant provider. Partnering with an experienced processor, such as Payment Savvy, provides you with both an education of PCI compliance and also allows for a custom and secure payment acceptance solution to be built for your company. Experience the Payment Savvy difference. Since 2010, we have been our merchants’ eyes and ears to ensure your payment portal is the most secure and advanced on the marketplace today. 

      Eli Smith

      Eli Smith

      Responsible for keeping Payment Savvy running like a well-oiled machine, Eli has extensive experience with everything related to technology and financial services. Maintaining back-end operations efficient and productive isn't his only strong suit, Eli is also a key component of our sales team and is in constant pursuit of perfection. In charge of ground-breaking partnerships, he is always on the lookout for the next innovative product offering for our Savvy clientele. Eli's knowledge of the payment processing cycle and critical compliance standards ensure our customer base always has an educated and expert opinion if needed.