PCI Compliance

 

Click here for the current PCI PA-DSS compliance listing for VersiPOS.

What is PCI Compliance?

Basically, all of the major card brands got together and created a common standard for credit card data security, known as the Payment Card Industry (PCI) Data Security Standard (DSS). Your compliance to the PCI DSS is now mandatory if you accept credit cards in your business. The PCI DSS can be viewed and downloaded from the following website: http://www.pcisecuritystandards.org

What is the Payment Application Data Security Standard (PA-DSS)?

The PA-DSS is the list of requirements that we, as software developers of a credit card payment processing application, are required to implement so that you can achieve PCI Compliance. They are essentially specific rules and methodologies for developing secure programs in such a way that credit card data is less susceptible to compromise.

What you need to do:

  • Start by reviewing our VersiPOS PA-DSS Implementation Guide. There’s a lot of information about the PCI DSS and specific recommendations for how to achieve PCI Compliance.

  • If you’re setting up your POS network, you should consult our VersiTech Firewall Guide for specific recommendations on hardware and segmentation.

  • Follow up with the user guides for the individual software products that make up the VersiTech Point-of-Sale suite:

    1. VersiPOS Users Guide

    2. VersiPay Users Guide

    3. VersiPay Secured Access Users Guide

  • Follow the instructions to activate VersiPay Secure Access. You’ll need to complete and submit an authorization form that identifies you as authorized representative of your business.

  • Use VersiPay Secure Access to check access logs.

  • Use VersiPay Secure Access to permanently remove sensitive credit card data from POS storage files after you’ve verified that the deposit has made it to your bank account.

  • Always make sure that you are running the most recent versions of VersiPOS, VersiPOS Admin, VersiPay, and VersiPay Secure Access.