News Article

01-09-2007

Credit card security & PCI DSS compliance

We have received a wave of calls from mail order companies throughout the UK who are worried that their current systems do not meet the minimum but stringent security standards required by the credit card providers. PCI DSS, the Payment Card Industry, Data Security Standard can be found on your bank's, Visa's and Mastercard's web sites or on this link www.pcisecuritystandards.org.

Khaos Control, and our payment portal partners, are PCI DSS compliant.

It is interesting to hear that Keystone's pricing for on-line credit card pre-authorisation and charging solutions is significantly less than many competitor services. So perhaps it is worth thinking about changing your software now.

Many 'older' solutions out there have been declared that they will never be PCI DSS compliant. Others are still waiting to be brought up to standard. As a mail order company you should have implemented PCI DSS by now, according to the banks. Khaos Control is one way to quickly comform.

On the web/e-commerce front 3D Secure is becoming more and more common. It is the generic name for Verified-by-Visa and Mastercard Securecode. Of particular interest is the reduced liability for chargebacks if web orders have been verified by 3D Secure.