Merchant Services Tool Kit TEXPO 2013

Similar documents
Q: What is PCI? Q: To whom does PCI apply? Q: Where can I find the PCI Data Security Standards (PCI DSS)? Q: What are the PCI compliance deadlines?

PROTECTION OF OUR MERCHANTS AND REFERRAL PARTNERS IS OUR FIRST CONCERN

* Any merchant that has suffered a hack that resulted in an account data compromise may be escalated to a higher validation level.

U.S. Merchant Class Settlement MasterCard Frequently Asked Questions Merchant

PAYMENT CARD INDUSTRY (PCI) COMPLIANCE HISTORY & OVERVIEW

It is important to note, the payment brands and acquirers are responsible for enforcing compliance, not the PCI council.

Credit Card Surcharge Rules & Fee Reductions. September 17, 2014 Matt Fluegge Vantiv

Questions and Answers PCI Compliance (Updated May 23, 2014)

How to Talk to Vendors about Accepting Card Payments

Updates on Credit Card Surcharging and Acceptance. Matt Fluegge, Ron Clifford, Scott Blakeley, Brad Boe June 14, :00 am Session Number 25042

Your Compliance Classification Level and What it Means

Payment Card Industry Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) Frequently Asked Questions

A Glossary of Key Terms for the Vendor to Surcharge to Make Card Payments a Price Competitive Payment Channel By: Scott Blakeley, Esq.

11/24/2014. PCI Compliance: Major Changes in e-quantum/quantum Net

Registration and PCI DSS compliance validation

Third Party Agent Registration and PCI DSS Compliance Validation Guide

TABLE OF CONTENTS. A Merchant Service by Any Other Name. AAmonte, Inc. is a registered ISO of Wells Fargo Bank, N.A., Walnut Creek, CA.

ACCEPTING PAYMENT CARDS FOR CONDUCTING UNIVERSITY BUSINESS:

The PCI DSS Compliance Guide For Small Business

Payment Processing Guidance Edition

Merchant guide to PCI DSS

TREASURER S OFFICE ADMINISTRATIVE STANDARDS FOR THE TREASURER S FISCAL PROCEDURE No MERCHANT DEBIT AND CREDIT CARD RECEIPTS

Worldpay s guide to the Payment Card Industry Data Security Standard (PCI DSS)

Appendix 1 Payment Card Industry Data Security Standards Program

What a Processor Needs from a University to Validate Compliance

AISA Sydney 15 th April 2009

Sage Payment Solutions. Reduce Your PCI Liability with Integrated Payment Solutions

A Compliance Overview for the Payment Card Industry (PCI)

Payment Card Industry Data Security Standard (PCI DSS) Q & A November 6, 2008

Simplêfy Client Support and Information Services. PCI Compliance Guidebook

Section 3.9 PCI DSS Information Security Policy Issued: June 2016 Replaces: January 2015

Frequently Asked Questions

University Policy Accepting Credit Cards to Conduct University Business

CREDIT CARD MERCHANT POLICY. All campuses served by Louisiana State University (LSU) Office of Accounting Services

PCI Compliance: How to ensure customer cardholder data is handled with care

CHEAT SHEET: PCI DSS 3.1 COMPLIANCE

The Cyber Attack and Hacking Epidemic A Legal and Business Survival Guide

ACCEPTING PAYMENT CARDS FOR CONDUCTING UNIVERSITY BUSINESS:

Accounting and Administrative Manual Section 100: Accounting and Finance

Frequently Asked Questions

PCI Compliance. Top 10 Questions & Answers

FORT HAYS STATE UNIVERSITY CREDIT CARD SECURITY POLICY

Clark University's PCI Compliance Policy

The Definitive Guide to Credit Card Surcharging

Merchant Processing. Trends and Truths. Roger Raney TransFirst Regional Sales Manager

How To Ensure Account Information Security

Payment Card Industry Data Security Standard Training. Chris Harper Vice President of Technical Services Secure Enterprise Computing, Inc.

SecurityMetrics Introduction to PCI Compliance

2.1.2 CARDHOLDER DATA SECURITY

WHITE PAPER. PCI Basics: What it Takes to Be Compliant

PAI Secure Program Guide

Payment Card Industry Data Security Standards Compliance

Guidelines for Accepting Credit Cards as a Form of Payment for Education, Registration and Other Fees

GRINNELL COLLEGE CREDIT CARD PROCESSING AND SECURITY POLICY

The Interlink Network and Maestro U.S.A. Network rules and regulations (collectively National/International Networks );

Payment Methods. The cost of doing business. Michelle Powell - BASYS Processing, Inc.

Payment Card Industry Standard - Symantec Services

PCI Compliance Top 10 Questions and Answers

Josiah Wilkinson Internal Security Assessor. Nationwide

EAA Policy for Accepting and Handling Credit and Debit Card Payments ( Policy )

E-Market Policy Accepting Online Payment for Conducting University Business

CAL POLY POMONA FOUNDATION. Policy for Accepting Payment (Credit) Card and Ecommerce Payments

Information Security Services. Achieving PCI compliance with Dell SecureWorks security services

FAQ S: TRUSTWAVE TRUSTKEEPER PCI MANAGER

Payment Card Industry Data Security Standards

Accepting Payment Cards and ecommerce Payments

FAQ s for Payment Card Processing at the University

WASHINGTON STATE UNIVERSITY MERCHANT ACCOUNT AGREEMENT FOR UNIVERSITY DEPARTMENTS

Before You Swipe: Best Practices in Accepting Credit, Debit and Pre-Paid. Paid Card Payments

An article on PCI Compliance for the Not-For-Profit Sector

CREDIT CARD MERCHANT PROCEDURES MANUAL. Effective Date: 5/25/2011

Understanding and Managing PCI DSS

Payment Card Industry Compliance Overview

What are the PCI DSS requirements? PCI DSS comprises twelve requirements, often referred to as the digital dozen. These define the need to:

PCI Compliance Overview

Ball State University Credit/Debit Card Handling Policy and Procedures

Information Technology

Brown Smith Wallace, LLC

CARD ACCEPTANCE GUIDE

Payment Card Industry Data Security Standard

University Policy Accepting and Handling Payment Cards to Conduct University Business

Navigate Your Way to PCI DSS Compliance

Saint Louis University Merchant Card Processing Policy & Procedures

PCI DSS. Payment Card Industry Data Security Standard.

CREDIT CARD PROCESSING POLICY AND PROCEDURES

UO Third Party Credit Card Processing Request

1/18/10. Walt Conway. PCI DSS in Context. Some History The Digital Dozen Key Players Cardholder Data Outsourcing Conclusions. PCI in Higher Education

PCI General Policy. Effective Date: August Approval: December 17, Maintenance of Policy: Office of Student Accounts REFERENCE DOCUMENTS:

IT Security Compliance PCI DSS FOR MERCHANTS THE PAYMENT CARD INDUSTRY DATE SECURITY STANDARD WHITE PAPER

PCI DSS and SSC what are these?

Why Is Compliance with PCI DSS Important?

How To Protect Your Business From A Hacker Attack

Introduction to PCI DSS

PCI Compliance Information Packet for Volunteers - Credit Card Processing for Product Sales and Online Camp / Event Registration

537 G St., Suite 201, Eureka, CA

b. USNH requires that all campus organizations and departments collecting credit card receipts:

Payment Card Industry Data Security Standard

Westpac Merchant. A guide to meeting the new Payment Card Industry Security Standards

Transcription:

Merchant Services Tool Kit TEXPO 2013

Surcharges Visa Information Website Site Preview and PDF s: www.visa.com/merchantsurcharging Materials Notification of Intent to Surcharge Merchants who choose to surcharge must notify Visa and their acquirer 30 days prior to beginning to surcharge; click here to notify Visa. Considerations and Requirements for Merchant Surcharging PDF 106kB Important considerations and guidelines for merchants to consider when deciding whether or not to surcharge Frequently Asked Questions for Merchants PDF 260kB Answers to frequently asked questions related to surcharging, designed for merchants Notice to Merchants About Visa s Rule Changes PDF 235kB Read Visa s notification to merchants about changes to its rules to enable surcharging as required by the settlement Sample Point-of-Sale and Point-of-Entry Disclosures PDF 15.3kB Merchants who intend to surcharge can download point-of-sale and point-of-entry signs to help inform customers about surcharging, as required by the settlement Maximum Surcharge Limits and Average Costs of PDF 207kB Acceptance Access information about maximum surcharge limits and average costs of acceptance to determine the amount you may surcharge

Q. What is a payment card surcharge? A payment card surcharge, also known as a checkout fee, is an additional fee that a merchant adds to a consumer's bill when he or she uses a card for payment. Q. Can I add a surcharge to card transactions? As a result of a legal settlement to resolve claims brought by a group of U.S. merchants, merchants in the U.S. and U.S. territories may add a surcharge to certain credit card transactions, starting January 27, 2013. Merchants who choose to surcharge must follow consumer disclosure and other requirements agreed to as part of the settlement.

Q. When can I begin to surcharge? U.S. merchants must first notify Visa and their acquirer of their intent to surcharge at least 30 days prior to implementing surcharging. Merchants can submit a notification form to Visa at www.visa.com/merchantsurcharging. Merchants may not begin surcharging until January 27, 2013. Q. What should I consider when determining whether or not to assess a surcharge on card transactions? Before choosing to surcharge, U.S. merchants may want to consider a number of factors, including: the potential impact on your customers experience what your competitors might be doing what information must be disclosed to your customers, and how cost of credit cards and other forms of payment

Q. I am a merchant who intends to surcharge. What is the process I need to follow? U.S. merchants that intend to surcharge are required to: Notify Visa and your acquirer at least 30 days in advance of beginning to surcharge; a notification form to Visa can be submitted at www.visa.com/merchantsurcharging. Limit surcharging to credit cards only (no surcharging debit and prepaid cards) and limit the amount to your merchant discount rate for the applicable credit card surcharged*. Disclose the surcharge as a merchant fee and clearly alert consumers to the practice at the point of sale both in store and online and on every receipt. Merchants should also consider whether they comply with all applicable state or federal laws. Currently, 10 U.S. states have surcharging restrictions including California, Colorado, Connecticut, Florida, Kansas, Maine, Massachusetts, New York, Oklahoma and Texas.

Q. Can I assess a surcharge on both credit and debit card purchases? No. The ability to surcharge only applies to credit card purchases, and only under certain conditions. U.S. merchants cannot surcharge debit card or prepaid card purchases. Q. Can I assess a surcharge on debit card transactions for which the cardholder using a debit card chooses credit on the point of sale terminal? No. The ability to surcharge only applies to purchases made with a credit card, and only under certain conditions.

Q. Are there limits to the amount I can surcharge? Yes. U.S. merchants may assess a surcharge on credit card purchases that does not exceed the merchant discount rate for the applicable credit card surcharged*. More information can be found at www.visa.com/merchantsurcharging. Q. Can I choose to surcharge Visa credit cards and not surcharge other card brands? Yes, however, merchants must surcharge Visa on the same terms and conditions as any equal or higher cost competitor that imposes limits on surcharging.

Q. Am I required to disclose the surcharge to my customers? Yes. U.S. merchants that surcharge must disclose the surcharge dollar amount on every receipt. In addition, disclosures that a merchant outlet assesses a surcharge on credit card purchases must be posted at the pointof-entry and point-of-sale. Disclosure requirements and sample compliant signage can be found at www.visa.com/merchantsurcharging. Q. What laws exist that may relate to surcharging? Currently, 10 U.S. states have surcharging restrictions including California, Colorado, Connecticut, Florida, Kansas, Maine, Massachusetts, New York, Oklahoma and Texas. Please consult with legal counsel to determine whether your practices comply with relevant state law.

Q. I operate stores in multiple states. I understand that state laws prohibit me from surcharging in some states where I operate, but not others does that mean I can t surcharge in any of the states where I operate? No. If a merchant is prohibited from surcharging in one state, Visa s rules do not prevent the merchant from surcharging in other states that allow the practice. Q. Can I pick and choose what types of Visa cards I add a surcharge to? U.S. merchants have the option to add a surcharge at the brand level to all Visa credit card transactions, or to particular types of Visa credit card transactions at the product level (e.g., Visa Traditional, Visa Traditional Rewards, Visa Signature), but not both.

U.S. merchants will have the option of adding a surcharge to either all Visa credit card transactions or to particular types of Visa credit card transactions. Specific limits will apply to each of these types of surcharges, and merchant surcharges cannot in any event exceed the maximum amount of 4% of the underlying transaction.

PCI-DDS FAQ s Q: If I only accept credit cards over the phone, does PCI still apply to me? Yes. All business that store, process or transmit payment cardholder data must be PCI Compliant. Q: Do organizations using third-party processors have to be PCI compliant? Yes. Merely using a third-party company does not exclude a company from PCI compliance. It may cut down on their risk exposure and consequently reduce the effort to validate compliance. However, it does not mean they can ignore PCI.

PCI-DDS FAQ s Q: My business has multiple locations, is each location required to validate PCI Compliance? If your business locations process under the same Tax ID, then typically you are only required to validate once annually for all locations. And, submit quarterly passing network scans by an PCI SSC Approved Scanning Vendor (ASV), if applicable. Q: Are debit card transactions in scope for PCI? In-scope cards include any debit, credit, and pre-paid cards branded with one of the five card association/brand logos that participate in the PCI SSC - American Express, Discover, JCB, MasterCard, and Visa International.

PCI-DDS FAQ s Q: Am I PCI compliant if I have an SSL certificate? No. SSL certificates do not secure a Web server from malicious attacks or intrusions. High assurance SSL certificates provide the first tier of customer security and reassurance such as the below, but there are other steps to achieve PCI Compliance. Q: What are the penalties for noncompliance? The payment brands may, at their discretion, fine an acquiring bank $5,000 to $100,000 per month for PCI compliance violations. The banks will most likely pass this fine on downstream till it eventually hits the merchant. Furthermore, the bank will also most likely either terminate your relationship or increase transaction fees.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information