November 20th, 2008 by Jamie Estep
PCI Non-Compliance Fees Getting Much Worse
Filed in: Merchant Accounts | 2 comments
Just yesterday, I wrote about the increasing number of non-compliance PCI charges that processors are passing down to their customers. A few months ago several processors started adding monthly PCI compliance fees to their customer’s bill. We’ll, the PCI fees are getting a lot worse!
I reviewed a potential customer’s statement today and they had a $500 PCI non-compliance fee on it, which is by far the largest I have seen to date. Needless to say they were very upset.
Get Compliant:
It appears that these non-compliance fees are going to get much worse, very quickly. We’re getting a lot of pressure from sponsoring banks to impose similar fees, and so far we’ve been able to avoid them.
The point is, these fess are going to be the standard in the near future. If you’re not PCI compliant now, it’s time to look into it before your processor tacks a $500 fee on your monthly bill.
PCI-DSS is required for all US businesses that accept credit cards. For some businesses, there will be no additional cost for becoming compliant. For businesses the process online, or ones storing data, scanning can cost as low as $50 per year, which is a far cry from $500. Security is however, a lot more than just filling out a survey and scanning a server 4 times a year, as requires by PCI-DSS. Whatever the case, PCI-DSS is required by all card issuers, and needs to be adopted. I’m not going to argue whether PCI is fair for some of the businesses out there, but data needs to be secure for every business.
For PCI-DSS Compliance, Start Here: https://www.pcisecuritystandards.org/
By far the best PCI compliance experts assisting Merchants like me are from a US and Canadian company called Datassurant.
Their website is http://www.datassurant.com or http://www.datassurant.ca click on the merchants tab on the homepage.
They have built some awesome PCI software to take on Trustwaves “TrustKeeper”, I was part of the beta group, and loved it!
It is so easy to use I decided to dump the “free” Trustkeeper PCI service our provider offered us in an email (which wasn’t really free afterall anyways), but rather a way for my service provider to keep some of MY money for referring my business to Trustwave.
Let me end the rant there! Try Datassurant out, you’ll see what I mean.
we used security metrics and xiio networks did a great job