Sample Management System For a Network Marketing Scheme
|
|
- Kathlyn Chastity Pitts
- 3 years ago
- Views:
Transcription
1 Annex 3 Information Required to be Submitted on Application for Approval to Issue Multi-purpose Stored Value Cards The structure of the Scheme 1. Which company is the issuer of the card? 2. What is the name of the card scheme ( the Scheme )? 3. Please provide a short summary of the structure of the Scheme in addition to answering the detailed questions set out below. 4. Please describe the proposed range of uses of the card, including the principal ( core ) use (if any). 5. Please describe the locations in which it is intended that the card will be used. 6. Please list all the parties involved in the Scheme, and describe their respective roles and responsibilities and any inter-relationship between them (e.g. whether the companies concerned are parent, subsidiary or sister companies of one another). 7. Please state whether the card is disposable or reloadable, and whether or not card to card transfer of value is allowed. Contractual arrangements 8. Please provide copies of all contractual documents and agreements which describe the terms and conditions of the Scheme and the rights and obligations of the various parties listed in question Please describe how the terms and conditions of the Scheme define the rights and obligations of the various parties (such as cardholders) in relation to such situations as: (e) (f) (g) lost or stolen cards; disputes over the amount of value stored on a card; damaged cards; counterfeit cards; counterfeit value stored on genuine cards; cardholders liability and service providers rights in respect of unauthorized transactions; and any charge back arrangements. 1
2 10. Please describe the procedures that would be used to resolve disputes arising out of the above situations. 11. Please describe how the rights of cardholders would be protected in the event of the default of the various participating parties in the Scheme (including particularly the issuer and service provider(s)). 12. Please describe the circumstances under which cardholders may obtain repayment or cash refund in respect of value stored on the card. 13. Please provide information about any regular or one-off fees or charges which will apply to the various parties involved in the Scheme. Risk management and internal controls 14. In addition to answering the detailed questions set out below, please provide your own short assessment of the major risks to which the Scheme may be exposed and how these risks will be managed. 15. Please describe the arrangements and internal controls relating to the manufacture of the cards and the microchip, and the delivery to, and storage of, the cards by the issuer. 16. Please describe the arrangements and internal controls relating to the following: the creation of value to be stored on cards; the downloading of value onto cards; the transfer of value among participants in the Scheme; and the redemption of value. 17. Please describe the arrangements and internal controls relating to the issuance of cards, including: whether checks are made on the identity of cardholders; whether a register of cardholders is maintained; and whether the card is linked to a particular bank account. 18. Please describe the software and hardware protection incorporated in the microchip, including the extent to which it is resistant to tampering and reverse-engineering. 19. Please describe the encryption and authentication techniques used to protect the confidentiality and integrity of data during transmission and while stored on the card. 20. What arrangements have been put in place to guard against collusion among employees who have access to key security information? 2
3 21. Please describe the circumstances in which on-line authorization and PIN numbers are required to be used in making transactions with the card. 22. Please describe the arrangements for maintaining records for transactions made with the card. To what extent is there an audit trail for transfers of value, (including between cards (if permitted))? 23. Please describe any limits which apply to the amount of value that may be stored on the card or on the size of individual transactions that may be made with the card. 24. Please describe any safeguards, not already mentioned above, to protect against the use of the card for money laundering. 25. Please describe the arrangements for the monitoring of unusual transactions and for the detection and investigation of possible fraud. 26. Have the various security aspects of the Scheme (including chip security and the encryption/authentication techniques) been reviewed by independent consultants? If yes, please provide us with copies of the reports. If not, please describe what other steps you have taken to review the security of the Scheme and provide any written material arising from such review. 27. What arrangements are in place to ensure that the risk management systems and internal controls are reviewed on a regular basis (e.g. by external or internal auditors)? 28. Please describe the arrangements for preserving the confidentiality of customer information, including compliance with the Personal Data (Privacy) Ordinance. 29. Please describe how to meet the relevant best practices set out in the Code of Banking Practice, particularly those specific to stored valued cards. Contingency plans 30. Please describe the disaster recovery plan (e.g. in the event of major computer failure) and the back-up systems that are in place. 31. Please describe the action that would be taken in the event of a major compromise of the Scheme (e.g. as a result of substantial forgery). If there is provision to close down the Scheme, please describe how that would be done and how the interests of cardholders would be protected. 3
4 Clearing and settlement arrangements 32. Please describe the timetable and the arrangements for settling payments due between participants in the Scheme (e.g. between the issuer and service providers or between issuing banks which are members of the same Scheme). Accounting arrangements and management of the float 33. Please describe the principal accounting policies that will apply in relation to the Scheme, including how the liability in respect of value stored on the card will be reflected in the balance sheet of the issuer. 34. Please describe the arrangement for holding, managing and investing the float (i.e. the funds which back the value stored on the cards). 35. Please describe the extent to which the assets representing the float will be held separate from the other assets of the holder of the float. 36. In which type of assets will the float be invested? 37. Please describe how the liquidity needs of the Scheme will be determined, and how these needs are reflected in the investment policy described in the previous question. In particular, how will you ensure that the Scheme has sufficient liquid assets to meet its obligations to service providers and to cardholders? 38. Please describe how the various other risks associated with the float (e.g. credit risk and market risk in its investments) will be managed. 39. Please describe how the management of the float will be monitored and controlled (e.g. by internal audit). Business plan 40. When will the Scheme be launched? If it will be launched in stages, please provide the proposed timetable for these. 41. Where a card is to have a core use (see question 4 above) and various ancillary or incidental uses, please explain the business case for such ancillary/incidental uses and describe the extent to which they relate to the core use. 42. Please provide projections of the following for each of the first three years of operation: the number of cards expected to be in circulation at the end of each year; 4
5 (e) (f) (g) the aggregate amount of outstanding value on cards at the end of each year; the average amount of outstanding value per card during each year; the average value per transaction; the aggregate annual value of transactions broken down by core and non-core uses (each such use to be separately identified if possible); the balance sheet for the Scheme at the end of each year (i.e. the liabilities and associated assets arising from the Scheme); and the profit/loss arising from the Scheme for each year. 43. Please describe the arrangements for monitoring the various uses of the card and the ability to restrict the volume of non-core uses if these become substantial in relation to the core use. 5
SAS 70 Exams Of EBT Controls And Processors
Appendix VIII SAS 70 Examinations of EBT Service Organizations Background States must obtain an examination by an independent auditor of the State electronic benefits transfer (EBT) service providers (service
More informationPrudential Standard. APS 240 - Risk Management of Credit Card Activities. Index Objective Principles. July 2003
Prudential Standard APS 240 - Risk Management of Credit Card Activities Objective Principles Board and Management Supervision Credit Risk Liquidity Risk Operational Risk i Prudential Standard APS 240 -
More informationPrepared Jointly by a Task Group Comprised of Federal and State Audit and Program Agencies and Member Firms of the AICPA
REVIEW GUIDELINES FOR SERVICE ORGANIZATIONS PROVIDING ELECTRONIC BENEFITS TRANSFER SERVICES FOR GOVERNMENT PROGRAMS IN ACCORDANCE WITH SAS-70 Prepared Jointly by a Task Group Comprised of Federal and State
More informationPART A : OVERVIEW...1 1. INTRODUCTION...1 2. OBJECTIVE...1 3. SCOPE...2 4. APPLICABILITY...2 5. DEFINITION...2 6. LEGAL PROVISIONS...
PART A : OVERVIEW...1 1. INTRODUCTION...1 2. OBJECTIVE...1 3. SCOPE...2 4. APPLICABILITY...2 5. DEFINITION...2 6. LEGAL PROVISIONS...3 PART B : OPERATIONAL REQUIREMENTS...4 7. PRINCIPLE 1: ESTABLISH ADEQUATE
More informationmobile payment acceptance Solutions Visa security best practices version 3.0
mobile payment acceptance Visa security best practices version 3.0 Visa Security Best Practices for, Version 3.0 Since Visa s first release of this best practices document in 2011, we have seen a rapid
More informationBANK OF UGANDA MOBILE MONEY GUIDELINES, 2013 ARRANGEMENT OF PARAGRAPHS
BANK OF UGANDA MOBILE MONEY GUIDELINES, 2013 ARRANGEMENT OF PARAGRAPHS PART I PRELIMINARY 1. Citation and Commencement... 2 2. Background... 2 3. Objectives... 3 4. Application... 3 5. Interpretation...
More informationFinancial and Commercial Services. Government Purchasing Card (GPC) Procedures
Financial and Commercial Services Government Purchasing Card (GPC) Procedures Date: Jan 2010 CONTENTS Contents 1. INTRODUCTION... 2 1 GENERAL RULES REGARDING USE OF THE GPC CARD... 2 2 PLACING AN ORDER
More informationDartmouth College Merchant Credit Card Policy for Processors
Mission Statement Dartmouth College Merchant Credit Card Policy for Processors Dartmouth College requires all departments that process, store or transmit credit card data remain in compliance with the
More informationRisk Management Programme Guidelines
Risk Management Programme Guidelines Submissions are invited on these draft Reserve Bank risk management programme guidelines for non-bank deposit takers. Submissions should be made by 29 June 2009 and
More informationHIPAA Security Alert
Shipman & Goodwin LLP HIPAA Security Alert July 2008 EXECUTIVE GUIDANCE HIPAA SECURITY COMPLIANCE How would your organization s senior management respond to CMS or OIG inquiries about health information
More informationCREDIT CARD PROCESSING POLICY AND PROCEDURES
CREDIT CARD PROCESSING POLICY AND PROCEDURES Note: For purposes of this document, debit cards are treated the same as credit cards. Any reference to credit cards includes credit and debit card transactions.
More informationEASY FOREX TRADING LTD DISCLOSURE AND MARKET DISCIPLINE IN ACCORDANCE WITH CAPITAL ADEQUACY AND THE REQUIREMENTS ON RISK MANAGEMENT
EASY FOREX TRADING LTD DISCLOSURE AND MARKET DISCIPLINE IN ACCORDANCE WITH CAPITAL ADEQUACY AND THE REQUIREMENTS ON RISK MANAGEMENT 31 st December 2012 Introduction For the purposes of Directive DI144-2007-05
More informationTechnical Safeguards is the third area of safeguard defined by the HIPAA Security Rule. The technical safeguards are intended to create policies and
Technical Safeguards is the third area of safeguard defined by the HIPAA Security Rule. The technical safeguards are intended to create policies and procedures to govern who has access to electronic protected
More informationCode of Conduct for Mobile Money Providers
Code of Conduct for Mobile Money Providers SOUNDNESS OF SERVICES FAIR TREATMENT OF CUSTOMERS SECURITY OF THE MOBILE NETWORK AND CHANNEL VERSION 2 - OCTOBER 2015 Introduction This Code of Conduct identifies
More informationAUSTIN INDEPENDENT SCHOOL DISTRICT INTERNAL AUDIT DEPARTMENT TRANSPORTATION AUDIT PROGRAM
GENERAL: The Technology department is responsible for the managing of electronic devices and software for the District, as well as the Help Desk for resolution of employee-created help tickets. The subgroups
More informationEMV FAQs. Contact us at: CS@VancoPayments.com. Visit us online: VancoPayments.com
EMV FAQs Contact us at: CS@VancoPayments.com Visit us online: VancoPayments.com What are the benefits of EMV cards to merchants and consumers? What is EMV? The acronym EMV stands for an organization formed
More informationThe Second National HIPAA Summit
HIPAA Security Regulations: Documentation and Procedures The Second National HIPAA Summit Healthcare Computing Strategies, Inc. John Parmigiani Practice Director, Compliance Programs Tom Walsh, CISSP Practice
More informationSecuring the FOSS VistA Stack HIPAA Baseline Discussion. Jack L. Shaffer, Jr. Chief Operations Officer
Securing the FOSS VistA Stack HIPAA Baseline Discussion Jack L. Shaffer, Jr. Chief Operations Officer HIPAA as Baseline of security: To secure any stack which contains ephi (electonic Protected Health
More informationfirst direct credit card terms
first direct credit card terms 1 Definitions These are the definitions used in this Agreement: : a transfer to the Account of an amount you owe to another lender (who is not a member of the HSBC Group)
More informationHIPAA Information Security Overview
HIPAA Information Security Overview Security Overview HIPAA Security Regulations establish safeguards for protected health information (PHI) in electronic format. The security rules apply to PHI that is
More informationInternet Banking Internal Control Questionnaire
Internet Banking Internal Control Questionnaire Completed by: Date Completed: 1. Has the institution developed and implemented a sound system of internal controls over Internet banking technology and systems?
More informationVisa Reloadable Frequently Asked Questions. EMV Travel Card
Visa Reloadable Frequently Asked Questions EMV Travel Card How does the International Prepaid Card work? The International Prepaid Card is a reloadable prepaid Visa debit card, which means you can spend
More informationApple Corporate Email Certificates Certificate Policy and Certification Practice Statement. Apple Inc.
Apple Inc. Certificate Policy and Certification Practice Statement Version 2.0 Effective Date: April 10, 2015 Table of Contents 1. Introduction... 4 1.1. Trademarks... 4 1.2. Table of acronyms... 4 1.3.
More informationGuidelines for Card Issuance and Usage in Nigeria
CENTRAL BANK OF NIGERIA Guidelines for Card Issuance and Usage in Nigeria Ver. 2 GUIDELINES FOR CARD ISSUANCE AND USAGE IN NIGERIA SECTIONS/TA BLE OF CONTENTS 1.0 Preambles 3 2.0 Minimum Standards 3 3.0
More informationPayments Industry Glossary
Payments Industry Glossary 2012 First Data Corporation. All trademarks, service marks and trade names referenced in this material are the property of their respective owners. A ACH: Automated Clearing
More information2: Credit cards, etc. Overview of the sector
19 2: Credit cards, etc Overview of the sector Note: This sectoral guidance is incomplete on its own. It must be read in conjunction with the main guidance set out in Part I of the Guidance. 2.1 A credit
More informationCREDIT CARD PAYMENTS ARE NOT ACCEPTED FOR STUDENT TUITION PAYMENTS
Basic Credit Card Processing Procedures The following is intended to provide basic procedures that departments or units can use as a starting point to develop specific procedures for their department or
More informationCANADIAN PAYMENTS ASSOCIATION ASSOCIATION CANADIENNE DES PAIEMENTS RULE E1
CANADIAN PAYMENTS ASSOCIATION ASSOCIATION CANADIENNE DES PAIEMENTS RULE E1 EXCHANGE OF SHARED ELECTRONIC POINT-OF-SERVICE PAYMENT ITEMS FOR THE PURPOSE OF CLEARING AND SETTLEMENT 2015 CANADIAN PAYMENTS
More informationNEWS BULLETIN 2015-16
NEWS BULLETIN Maine Automobile Dealers Association 180 Civic Center Drive P. O. Box 2667 Augusta, Maine 04338-2667 DIAL 623-3882 e-mail:info@maineautodealers.com FAX 623-2318 DISTRIBUTION General Manager
More informationCorporate Travel & Expense Card Procedures. Financial and Commercial Services
Corporate Travel & Expense Card Procedures Financial and Commercial Services Contents 1. INTRODUCTION... 2 2. GENERAL RULES REGARDING USE OF YOUR CORPORATE TRAVEL & EXPENSE CARD... 2 3. PLACING AN ORDER
More informationPRIVACY POLICIES AND FORMS FOR BUSINESS ASSOCIATES
PRIVACY POLICIES AND FORMS FOR BUSINESS ASSOCIATES TABLE OF CONTENTS A. Overview of HIPAA Compliance Program B. General Policies 1. Glossary of Defined Terms Used in HIPAA Policies and Procedures 2. Privacy
More informationMEDICAL FACILITIES CORPORATION
Consolidated Financial Statements of MEDICAL FACILITIES CORPORATION December 31, 2014 and 2013 (In U.S. dollars) TABLE OF CONTENTS FINANCIAL STATEMENTS Page Management s Responsibility for Financial Reporting...
More informationKenya Gazette Supplement No. 119 1st August, 2014. (Legislative Supplement No. 43)
SPECIAL ISSUE 709 Kenya Gazette Supplement No. 119 1st August, 2014 (Legislative Supplement No. 43) LEGAL NOTICE NO. 109 THE NATIONAL PAYMENT SYSTEM ACT (No. 39 of 2011) THE NATIONAL PAYMENT SYSTEM REGULATIONS,
More informationThird Party Relationships
3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 A B D INTRODUCTION AND PURPOSE Background Yes/No Comments 1. Does the credit union maintain a list of the third party
More informationBANK OF JAMAICA 1 February 2013. Guidelines for Electronic Retail Payment Services
BANK OF JAMAICA Guidelines for Electronic Retail Payment Services Foreword The Draft Guidelines for Retail Payment Services was published by the Bank of Jamaica (Bank) on 3 August 2012, with an invitation
More informationHIPAA PRIVACY AND SECURITY AWARENESS
HIPAA PRIVACY AND SECURITY AWARENESS Introduction The Health Insurance Portability and Accountability Act (known as HIPAA) was enacted by Congress in 1996. HIPAA serves three main purposes: To protect
More informationRoche Capital Market Ltd Financial Statements 2014
Roche Capital Market Ltd Financial Statements 2014 1 Roche Capital Market Ltd - Financial Statements 2014 Roche Capital Market Ltd, Financial Statements Roche Capital Market Ltd, statement of comprehensive
More informationAmerican International Group, Inc. DNS Practice Statement for the AIG Zone. Version 0.2
American International Group, Inc. DNS Practice Statement for the AIG Zone Version 0.2 1 Table of contents 1 INTRODUCTION... 6 1.1 Overview...6 1.2 Document Name and Identification...6 1.3 Community and
More informationComplying with PCI Data Security
Complying with PCI Data Security Solution BRIEF Retailers, financial institutions, data processors, and any other vendors that manage credit card holder data today must adhere to strict policies for ensuring
More informationCloud Computing: Legal Risks and Best Practices
Cloud Computing: Legal Risks and Best Practices A Bennett Jones Presentation Toronto, Ontario Lisa Abe-Oldenburg, Partner Bennett Jones LLP November 7, 2012 Introduction Security and Data Privacy Recent
More informationGUIDANCE NOTE ON OUTSOURCING
GN 14 GUIDANCE NOTE ON OUTSOURCING Office of the Commissioner of Insurance Contents Page I. Introduction.. 1 II. Application...... 1 III. Interpretation.... 2 IV. Legal and Regulatory Obligations... 3
More informationFINAL May 2005. Guideline on Security Systems for Safeguarding Customer Information
FINAL May 2005 Guideline on Security Systems for Safeguarding Customer Information Table of Contents 1 Introduction 1 1.1 Purpose of Guideline 1 2 Definitions 2 3 Internal Controls and Procedures 2 3.1
More informationDartmouth College Merchant Credit Card Policy for Managers and Supervisors
Dartmouth College Merchant Credit Card Policy for Managers and Supervisors Mission Statement Dartmouth College requires all departments that process, store or transmit credit card data remain in compliance
More informationMerchant Payment Card Processing Guidelines
Merchant Payment Card Processing Guidelines The following is intended to provide guidance that departments or units can use to help develop specific procedures for their department or unit. If you have
More informationNew York State Electronic Signatures and Records Act
PIANY Doc. No. 31174 New York State Electronic Signatures and Records Act The information contained within this Resource kit was made available by the New York State Department of State Division of Administrative
More informationHIPAA: In Plain English
HIPAA: In Plain English Material derived from a presentation by Kris K. Hughes, Esq. Posted with permission from the author. The Health Insurance Portability and Accountability Act of 1996 (HIPAA), Pub.
More informationHeartland Secure. By: Michael English. A Heartland Payment Systems White Paper 2014. Executive Director, Product Development
A Heartland Payment Systems White Paper 2014 Heartland Secure. By: Michael English Executive Director, Product Development 2014 Heartland Payment Systems. All trademarks, service marks and trade names
More informationHIPAA Security. 2 Security Standards: Administrative Safeguards. Security Topics
HIPAA Security SERIES Security Topics 1. Security 101 for Covered Entities 5. 2. Security Standards - Organizational, Security Policies Standards & Procedures, - Administrative and Documentation Safeguards
More informationLaw. on Payment Services and Payment Systems. Chapter One GENERAL PROVISIONS. Section I Subject and Negative Scope. Subject.
Law on Payment Services and Payment Systems 1 Law on Payment Services and Payment Systems (Adopted by the 40th National Assembly on 12 March 2009; published in the Darjaven Vestnik, issue 23 of 27 March
More informationACCEPTING PAYMENT CARD ASSESSMENT Pre-Selection Questionnaire
ACCEPTING PAYMENT CARD ASSESSMENT Pre-Selection Questionnaire Overview This pre-implementation questionnaire is designed to provide the Boston College Internal Audit Department with a general understanding
More informationElectronic Payment Schemes Guidelines
BANK OF TANZANIA Electronic Payment Schemes Guidelines Bank of Tanzania May 2007 Bank of Tanzania- Electronic Payment Schemes and Products Guidleness page 1 Bank of Tanzania, 10 Mirambo Street, Dar es
More informationTHE SALIENT FEATURES OF RBI MASTER CIRCULAR ON CREDIT CARD OPERATIONS OF BANKS
THE SALIENT FEATURES OF RBI MASTER CIRCULAR ON CREDIT CARD OPERATIONS OF BANKS 01. Basic features of credit cards The term credit card usually/generally refers to a plastic card assigned to a cardholder,
More informationConventional Platinum Credit Cards in Sterling Pounds Terms and Conditions
Conventional Platinum Credit Cards in Sterling Pounds Terms and Conditions Arab National Bank ("Bank") will issue the ANB Credit Card ("Card"), subject to the following Terms and Conditions: 1. Standard
More informationFinansinspektionen s Regulatory Code
Finansinspektionen s Regulatory Code Publisher: Finansinspektionen, Sweden, www.fi.se ISSN 1102-7460 This translation is furnished for information purposes only and is not itself a legal document. Finansinspektionen's
More informationHIPAA Security COMPLIANCE Checklist For Employers
Compliance HIPAA Security COMPLIANCE Checklist For Employers All of the following steps must be completed by April 20, 2006 (April 14, 2005 for Large Health Plans) Broadly speaking, there are three major
More informationPayment Card Acceptance Administrative Policy
Administrative Procedure Approved By: Brandon Gilliland, Associate Vice President for Finance & Controller Effective Date: October 1, 2014 History: Approval Date: September 25, 2014 Revisions: Type: Administrative
More informationCredit Cards. Conditions of Use. making banking easier
Credit Cards 1 Conditions of Use Privacy Statement and Consent to Use Your Information 25 May 2015 making banking easier About these Conditions of Use Your Card Contract comprises: (1) these Conditions
More informationTRUE TITLE BEST PRACTICES
TRUE TITLE BEST PRACTICES Mission Statement The American Land Title Association (ALTA) seeks to guide its membership on best practices to protect consumers, promote quality service, provide for ongoing
More informationRoche Capital Market Ltd Financial Statements 2012
R Roche Capital Market Ltd Financial Statements 2012 1 Roche Capital Market Ltd - Financial Statements 2012 Roche Capital Market Ltd, Financial Statements Reference numbers indicate corresponding Notes
More informationTERMINAL CONTROL MEASURES
UCR Cashiering & Payment Card Services TERMINAL CONTROL MEASURES Instructions: Upon completion, please sign and return to cashandmerchant@ucr.edu when requesting a stand-alone dial up terminal. The University
More informationLiberty County School District Purchasing Card Procedures
PURCHASING CARD POLICY All purchases made using the Purchasing Card must be for official school business and in accordance with the District procurement code. The card must not be used for personal expenditures
More informationAn Oracle White Paper December 2010. Leveraging Oracle Enterprise Single Sign-On Suite Plus to Achieve HIPAA Compliance
An Oracle White Paper December 2010 Leveraging Oracle Enterprise Single Sign-On Suite Plus to Achieve HIPAA Compliance Executive Overview... 1 Health Information Portability and Accountability Act Security
More informationANZ Credit Card Conditions of Use CREDIT CARDS
ANZ Credit Card Conditions of Use CREDIT CARDS Effective AUgust 2014 Fiji Edition Important Notice This document does not contain all the pre-contractual information required to be given to you. Contact
More informationPrivacy and Security Meaningful Use Requirement HIPAA Readiness Review
Privacy and Security Meaningful Use Requirement HIPAA Readiness Review REACH - Achieving - Achieving meaningful meaningful use of your use EHR of your EHR Patti Kritzberger, RHIT, CHPS ND e-health Summit
More informationIntroduction to Online Payment Processing and PayPal Payment Solutions
Introduction to Online Payment Processing and PayPal Payment Solutions PayPal Helps Bring You New Customers Drivers of Consumer Demand for PayPal Opportunities for Merchants PayPal is: Secure Simple Fast
More informationPart 1 of Schedule 1 of IFSA
Submission Requirements for Application for Approval to Operate a Payment System or to Issue a Designated Payment Instrument or to be Registered to Provide Merchant Acquiring Services A. BACKGROUND With
More informationUnderstanding SAS 70 Reports on Internal Control
Understanding SAS 70 Reports on Internal Control PwC Agenda Internal Control Reporting: A Focus on SAS 70 Trends affecting internal control reporting Discussion points for Mutual Fund Directors with management
More informationHIPAA Compliance Guide
HIPAA Compliance Guide Important Terms Covered Entities (CAs) The HIPAA Privacy Rule refers to three specific groups as covered entities, including health plans, healthcare clearinghouses, and health care
More informationFor buying the things that matter. Q Card Merchant. Terms and Conditions. www.qcard.co.nz. Effective from 1 May 2014.
For buying the things that matter. Q Card Merchant Terms and Conditions www.qcard.co.nz Effective from 1 May 2014. Introduction A B C CFL provides Cardholders with a revolving credit facility to enable
More informationNetworks, Processors, and Issuers Payments Surveys (NPIPS)
FR 3066b Networks, Processors, and Issuers Payments Surveys (NPIPS) Survey Period: Calendar Year 2015 General-Purpose Credit Card Network 3 Private-Label Credit Card Merchant Issuer 8 Private-Label Credit
More informationBOC Express Cash Revolving Credit The Most Versatile Balance Transfer Program For Financial Management, Choose the BOC Express Cash Card
BOC Express Cash Revolving Credit The Most Versatile Balance Transfer Program For Financial Management, Choose the BOC Express Cash Card Switch to BOC Express Cash Revolving Credit The Most Versatile Balance
More informationPCI Compliance Overview
PCI Compliance Overview 1 PCI DSS Payment Card Industry Data Security Standard Standard that is applied to: Merchants Service Providers (Banks, Third party vendors, gateways) Systems (Hardware, software)
More informationRisk Management of Outsourced Technology Services. November 28, 2000
Risk Management of Outsourced Technology Services November 28, 2000 Purpose and Background This statement focuses on the risk management process of identifying, measuring, monitoring, and controlling the
More informationPCI Compliance: How to ensure customer cardholder data is handled with care
PCI Compliance: How to ensure customer cardholder data is handled with care Choosing a safe payment process for your business Contents Contents 2 Executive Summary 3 PCI compliance and accreditation 4
More informationWhat Merchants Need to Know About EMV
Effective November 1, 2014 1. What is EMV? EMV is the global standard for card present payment processing technology and it s coming to the U.S. EMV uses an embedded chip in the card that holds all the
More informationASPE AT A GLANCE Section 3856 Financial Instruments
ASPE AT A GLANCE Section 3856 Financial Instruments December 2014 Section 3856 Financial Instruments Effective Date Fiscal years beginning on or after January 1, 2011 1 SCOPE Applies to all financial instruments
More informationLeveraging Dedicated Servers and Dedicated Private Cloud for HIPAA Security and Compliance
ADVANCED INTERNET TECHNOLOGIES, INC. https://www.ait.com Leveraging Dedicated Servers and Dedicated Private Cloud for HIPAA Security and Compliance Table of Contents Introduction... 2 Encryption and Protection
More information<COMPANY> P01 - Information Security Policy
P01 - Information Security Policy Document Reference P01 - Information Security Policy Date 30th September 2014 Document Status Final Version 3.0 Revision History 1.0 09 November 2009: Initial release.
More informationcredit card Conditions of Use
VISA credit card Conditions of Use EFFECTIVE FROM 20 MARCH 2013 a refreshing attitude to banking QUEENSLAND COUNTRY CREDIT UNION VISA CREDIT CARD 1 Contents 1. Introduction 3 2. Additional Cards 3 3. Application
More informationHIPAA Security. assistance with implementation of the. security standards. This series aims to
HIPAA Security SERIES Security Topics 1. Security 101 for Covered Entities 2. Security Standards - Administrative Safeguards 3. Security Standards - Physical Safeguards 4. Security Standards - Technical
More informationRequirements for Clearing & Settlement Systems
Requirements for Clearing & Settlement Systems Jan Woltjer De Nederlandsche Bank Why is the infrastructure for Clearing, settlement and custody so important? Europe ==> Key to integration of the financial
More informationINFORMATION TECHNOLOGY MANAGEMENT CONTENTS. CHAPTER C RISKS 357-7 8. Risk Assessment 357-7
Information Technology Management Page 357-1 INFORMATION TECHNOLOGY MANAGEMENT CONTENTS CHAPTER A GENERAL 357-3 1. Introduction 357-3 2. Applicability 357-3 CHAPTER B SUPERVISION AND MANAGEMENT 357-4 3.
More informationTRAVEL CREDIT CARD PROGRAM SCOTIABANK VISA CARDHOLDER INFORMATION PACKAGE
TRAVEL CREDIT CARD PROGRAM SCOTIABANK VISA CARDHOLDER INFORMATION PACKAGE ***** Please read the entire information package to understand all obligations as a Credit Card holder under this University Program
More informationAn Introduction to HIPAA and how it relates to docstar
Disclaimer An Introduction to HIPAA and how it relates to docstar This document is provided by docstar to our partners and customers in an attempt to answer some of the questions and clear up some of the
More informationHSBC Premier Credit Card. Agreement Terms
HSBC Premier Credit Card Agreement Terms HSBC Premier Credit Card Agreement Terms 1. Definitions These are the definitions used in this Agreement: Balance Transfer : a transfer to the Account of an amount
More informationELECTRONIC COMMERCE MERCHANT AGREEMENT
ELECTRONIC COMMERCE MERCHANT AGREEMENT KNOW ALL MEN BY THESE PRESENTS: This Electronic Commerce Merchant Agreement ( Agreement ) entered into by and between the BANK OF THE PHILIPPINE ISLANDS, a corporation
More informationSecurity Is Everyone s Concern:
Security Is Everyone s Concern: What a Practice Needs to Know About ephi Security Mert Gambito Hawaii HIE Compliance and Privacy Officer July 26, 2014 E Komo Mai! This session s presenter is Mert Gambito
More informationTEMPLE UNIVERSITY POLICIES AND PROCEDURES MANUAL
TEMPLE UNIVERSITY POLICIES AND PROCEDURES MANUAL Title: Computer and Network Security Policy Policy Number: 04.72.12 Effective Date: November 4, 2003 Issuing Authority: Office of the Vice President for
More informationAIS Webinar. Payment Application Security. Hap Huynh Business Leader Visa Inc. 1 April 2009
AIS Webinar Payment Application Security Hap Huynh Business Leader Visa Inc. 1 April 2009 1 Agenda Security Environment Payment Application Security Overview Questions and Comments Payment Application
More informationAppendix 4-2: Sample HIPAA Security Risk Assessment For a Small Physician Practice
Appendix 4-2: Administrative, Physical, and Technical Safeguards Breach Notification Rule How Use this Assessment The following sample risk assessment provides you with a series of sample questions help
More informationProtecting the POS Answers to Your Frequently Asked Questions
Protecting the POS Answers to Your Frequently Asked Questions PROTECTING THE POS What is skimming? Skimming is the transfer of electronic data from one magnetic stripe to another for fraudulent purposes.
More informationCONDITIONS OF USE. for GREATER BUSINESS VISA CREDIT CARDS
Head Office: 103 Tudor Street, Hamilton NSW 2303 PO Box 173, Hamilton NSW 2303 Phone: 1300 651 400 Fax: (02) 4921 9112 Web: www.greater.com.au Email: webenquiry@greater.com.au ABN 88 087 651 956 Australian
More informationAPPENDIX A NCUA S CAMEL RATING SYSTEM (CAMEL) 1
APPENDIX A NCUA S CAMEL RATING SYSTEM (CAMEL) 1 The CAMEL rating system is based upon an evaluation of five critical elements of a credit union's operations: Capital Adequacy, Asset Quality, Management,
More informationName: Position held: Company Name: Is your organisation ISO27001 accredited:
Third Party Information Security Questionnaire This questionnaire is to be completed by the system administrator and by the third party hosting company if a separate company is used. Name: Position held:
More informationMobile Payments Guidelines No. 2 of 2011 for Custodian Account Based Mobile Payment Services
Mobile Payments Guidelines No. 2 of 2011 for Custodian Account Based Mobile Payment Services 1. Introduction 1.1 The Central Bank of Sri Lanka (CBSL), with a view of facilitating the development of emerging
More informationGUIDELINES FOR THE MANAGEMENT OF OPERATIONAL RISK FOR CREDIT UNIONS
SUPERVISORY AND REGULATORY GUIDELINES Guidelines Issued: 22 December 2015 GUIDELINES FOR THE MANAGEMENT OF OPERATIONAL RISK FOR CREDIT UNIONS 1. INTRODUCTION 1.1 The Central Bank of The Bahamas ( the Central
More informationEnterprise PrivaProtector 9.0
IRONSHORE INSURANCE COMPANIES 75 Federal St Boston, MA 02110 Toll Free: (877) IRON411 Enterprise PrivaProtector 9.0 Network Security and Privacy Insurance Application THE APPLICANT IS APPLYING FOR A CLAIMS
More informationTERMS AND CONDITIONS for the Select Retailer Group Prepaid Virtual Card and the Spend Anywhere Prepaid Virtual Card
TERMS AND CONDITIONS for the Select Retailer Group Prepaid Virtual Card and the Spend Anywhere Prepaid Virtual Card This Agreement applies to Your Virtual card. You must read it carefully. By applying
More informationANZ Commercial Card TERMS AND CONDITIONS 11.2015. ANZ Corporate Card ANZ Visa Purchasing Card ANZ Business One
ANZ Commercial Card TERMS AND CONDITIONS 11.2015 ANZ Corporate Card ANZ Visa Purchasing Card ANZ Business One Containing Terms and Conditions for: Facility Terms and Conditions Electronic Banking Conditions
More informationOperational Risk Publication Date: May 2015. 1. Operational Risk... 3
OPERATIONAL RISK Contents 1. Operational Risk... 3 1.1 Legislation... 3 1.2 Guidance... 3 1.3 Risk management process... 4 1.4 Risk register... 7 1.5 EBA Guidelines on the Security of Internet Payments...
More information