Cornerstone Processing Solutions Inc. is dedicated to working with you to protect your customers and your operations from fraud and security breaches. Let us help assist you in becoming PCI and EMV compliant.
Payment Card Industry (PCI) compliance refers to a set of data security guidelines designed by the Payment Brands specifically to keep customers’ account data from being compromised. Since breaches are a serious problem and instances of theft continue to increase, it is imperative that businesses use standard security procedures and technologies to thwart theft of cardholder data. By being PCI compliant, you will help protect your business from breaches that can lead to significant fines, penalties, liability issues, a loss of productivity, and severe damage to business reputation.
EMV is a term coined by the original card associations that collaborated on the standards for “chip card” technology and stands for Europay, MasterCard, and Visa. An EMV card is essentially a small computer that is easily recognizable in the form of a “chip” you can see/feel on a credit/debit cards exterior. EMV cards utilize a payment security approach that adds dynamic data to the tranasaction stream that, unlike a magnetic stipe card, makes it very difficult to replicate the data, and in turn, helps eliminate fraudulent transactions.
When will you truly be affected by EMV?
April 1st, 2015: All processors and sub-processors must be able to process EMV transactions.
October 1st, 2015: Networks will shift liability to the lowest Non-EMV compliant entity (usually the merchant). All credit/debit card processing point of sale terminals will need to be 100% EMV compliant by this date.
October 1st, 2016: ATMs will need to be 100% EMV compliant by this date.
October 1st, 2017: Fuel Sale merchants will need to be 100% EMV compliant by this date.
One of the valuable techniques for safeguarding sensitive information, like credit card numbers is tokenization. Tokenization is the process of completely removing sensitive credit card data from a company’s internal networks and relacing it with a unique, meaningless token. Tokens are randomly generated and have no meaning, making them worthless to criminals if a company’s system would be breached. Using tokens doesn’t change a merchant’s payment processing experience. Just like credit cards, tokens can be used for customer sales, refunds, voids, and credits, only they are much safer for a merchant than actual credit cards.