The card brands require merchants to be Payment Card Industry Data Security Standard (PCI DSS) compliant. This is accomplished by completing a Self Assessment Questionnaire (SAQ) and running network vulnerability scans. The SAQ is required annually, while scanning intervals vary depending upon the type of account.
Organizations, big and small, are susceptible to cyberattacks. Understanding cybersecurity essentials can be your greatest defense against potential attacks such as a data breach, ransomware, and phishing.
If a data breach occurs and you're not PCI compliant, your business will have to pay fines and penalties ranging between $5,000 and $500,000.
If you're not PCI compliant, you run the risk of losing your merchant account, which means you won't be able to accept credit card payments at all - even from an alternate processor.
AVOID NON-COMPLIANCE FEES!
Ready to make your PCI election? Click on the "Make PCI Election" button and you will be directed to the election form.
Use our PCI Compliance Manager tool to validate compliance with the Payment Card Industry Data Security Standards.
Click on the Forgot Username or Forgot Password links below the Login button and a reset email will be sent to you.
Need to speak with the PCI Support team? Call 855-750-0747 or click on the CALL PCI SUPPORT > button from a smart phone.
Need a template for your PCI Security Policy in accordance with the Payment Card Industry Data Security Standard (PCI-DSS)?
Effective July 2020, there is no longer a charge for PCI non-compliance. Instead, there will be a standard monthly PCI fee. If you validate PCI DSS compliance annually, you'll be billed a discounted PCI program fee.
The PCI DSS council maintains four (4) levels of PCI classification for merchants depending upon the number of transactions processed per calendar year. The levels are as follows:
Level 4 (0 - 20,000 transactions per year)
Level 3 (20,000 - 1MM transactions per year)
Level 2 (1MM - 6MM transactions per year)
Level 1 (> 6MM transactions per year)
There is a ninety (90) day grace period for all new Velocity Processing clients once the account is approved, regardless of previous processing. PCI compliance renewals are required on or before the anniversary date each year thereafter. Velocity Processing strongly encourages all clients to become PCI compliant as quickly as possible and run the network scan, if applicable.
A template for the Information Security Policy (ISP) can be found in the Downloads section below and on the PCI Election Form.
Velocity Processing is a registered Independent Sales Organization (ISO) / Member Service Provider (MSP) of Elavon, Inc. Georgia, a wholly owned subsidiary of U.S. Bancorp, Minneapolis, MN. Elavon has been processing electronic payments for 38 years and maintains an "A+" rating with the Better Business Bureau.