Documentation

 

All companies and organizations that deal with credit card information must adhere to PCI DSS. If your company takes credit card payments online, or through a call center, PCI DSS is a must.

PCI DSS Objectives and Requirements

Control Objectives Requirements
Build and maintain a secure network
  1. Install and maintain a firewall configuration to protect cardholder data
  2. Do not use vendor-supplied defaults for system passwords and other security parameters
Protect cardholder data
  1. Protect stored cardholder data
  2. Encrypt transmission of cardholder data across open, public networks
Maintain a vulnerability management program
  1. Use and regularly update anti-virus software
  2. Develop and maintain secure systems and applications
Implement strong access control measures
  1. Restrict access to cardholder data by business need-to-know
  2. Assign a unique ID to each person with computer access
  3. Restrict physical access to cardholder data
Regularly monitor and test networks
  1. Track and monitor all access to network resources and cardholder data
  2. Regularly test security systems and processes
Maintain an information security policy
  1. Maintain a policy that addresses information security for all personnel

These 6 objectives may sound straight forward at first, but when you dig deeper into the standard, the 12 section SAQ (Self Assessment Questionnaire) can become fairly complicated. There are over 200 questions to answer in the SAQ. Failing only one of them could put your PCI Compliance status at risk. Download the SAQ here to take a look.PCI Compliance doesn’t have to be so difficult. We created HostedPCI to make compliance a straight forward task. At the heart of all of the HostedPCI modules is the Payment Vault which includes our Tokenization technology. If you accept credit card data online, take a look at the Checkout Express Edition. For call and contact centers, HostedPCI offers the Call Center Edition Getting Started

Checkout Web Services API Guide

Checkout Web Services API can be accessed by any ecommerce system that needs to process credit card transactions with the use of the HPCI credit card token.

Express Checkout iFrame Guide

Express Checkout solution is designed to integrate with any ecommerce site that requires credit card and CVV information capture. The express checkout solution uses an iframe module that is installed on the main ecommerce sites payment pages.

 Common Error Codes

List the meaning of all the common error codes.


Screencasts

Watch the video to learn more about how HostedPCI can help you.

 

Code Samples

Code for common use cases in a variety of languages to help you get going on your project.


Advance Materials

Dispatch Web Services API Guide

Dispatch Web Services API can be accessed by any ecommerce system that needs to submit credit card transactions to a 3rd party web service with the use of the HPCI credit card token.

Phone Session API Guide

This guide provides implementation details to setup a telephonic call session and get the mapped credit card for the credit card entered via the telephone.