Enhanced Credit Card Security

Credit Card companies and banks have experienced a significant increase in the number and size of credit card fraud. Several large retail chains are in litigation because hackers were able to obtain large files of credit card sensitive data and use it to defraud card holders.

To protect the card holder VISA, Master Card and American Express have joined forces and created the Payment Card Industry. This entity has developed standards which merchants must adhere to or be subject to fines and possible rejection of card processing privileges. These standards are known as the PCI DSS Payment Card Industry Data Security Standard. They apply directly to you.

POS•IM Diamond 4.5 and POS•IM Premier 8.2 are currently undergoing the PCI DSS certification process by a licensed PCI compliance auditor. The test is scheduled to be completed toward the end of the third quarter 2008. At that time POS•IM will be added to the certified list. However, there are 12 requirements and the software only addresses some of these. The others deal with network, router, and management practices within your company.

In the latest versions all credit card information is encrypted, only encrypted data is transmitted on the network and internet. The credit card information is visible only on a limited basis, by proper password, by those that businesses owners deem proper on a need to know basis. (This can be done by using privileges features, and removing the Sales Point privilege 2184 ("Not view Credit Card Number.")

Store owners must identify and meet one of the four levels of PCI DSS compliance. Ensign has a tech tip that will help you understand each of those levels, the requirements involved, and outline the certification process that you will have to comply with.