HostedPCI – News/Blogs

,

Basic steps for thorough protection

Within the last two years, we have seen many storefronts migrate to a full eCommerce business, as well as other business types are required to provide online payment methods for their customer’s convenience and accommodation due to covid-19 restrictions. These companies that are now collecting customers’ personal information, along with payment information either over the phone or online are exposed to new potential breaches and threats due to the additional collection method.
,

HostedPCI Delayed BIN feature

By now everyone is adapting to the new 3DS 2.0 and MIT framework mandate which was introduced back in 2019. However, for some merchants, the 3DS 2.0 transaction flow continues to present challenges to their business processes. The most common concern we have received regarding the 3DS process is related to the BIN, while the roadblock may be different from Merchant to Merchant the underlying issue is the same and relates to the 3DS’ need to collect the BIN on the front end before Merchants have had a chance to analyze it.
,

Target Release Date set

The PCI council has been working hard to update and deliver a new version of the PCI DSS standard. Currently, the target date for the PCI DSS v4.0 release is estimated to be March 2022. This revision will be requesting for industry professionals to review and provide feedback about the draft before the final version is released in March.
,

8 Digit BIN implementation

The PCI Software-Based PIN Entry on COTS (SPoC) Standard provides requirements for developing secure solutions that enable EMV contact and contactless transactions with PIN entry on the merchant’s consumer device using a secure PIN entry application in combination with a Secure Card Reader for PIN (SCRP).
,

Accepting Payments over the Phone is PCI Concern.

PCI Compliance mandate works to protect Merchants and consumers from fraudulent activity that could occur during the payment process. Most businesses are familiar with PCI Compliance regarding online payment collection but may not be aware of PCI Compliance when processing payments over the phone. Whether your business is operating a singular phone line or multiple lines at once, it is important to familiarize yourself with the risks associated with accepting sensitive payment information during a phone call.
,

3D Secure 2.0 Exemptions

The 3D-Secure 2.0 process has been on every merchant’s mind lately as the deadline for compliance is fast approaching. While the general protocols regarding 3D Secure 2.0 are fairly straightforward there is some confusion regarding the exemptions which have been released along with the 3D-Secure mandate. There are three main categories for requesting an exemption to the Secure Customer Authentication (SCA) flow.
,

How can 3DS 2.0 Help your Business

Back in 2018, Europe announced changes that would be coming to the e-commerce, card-not-present payment space. This change was referred to as Secure Customer Authentication (SCA) which described a multi-factor authentication process for all customer-initiated transactions that took place online. As this mandate developed we began to see a new 3D Secure process evolve in order to fill this new protocol.
,

purpose of Credentials on File

While credentials on file made its first appearance in 2018 in the Canadian market through Visa it was not adopted throughout the rest of the world or issuers until now. Over the last year, online merchants across Europe have seen an increase in security surrounding customer privacy. This focus has led to new changes within the payment industry, by implementing what is now known as Secure Customer Authentication.
,

What is Data Residency? Why is it necessary?

Over the last decade, our society has seen an increase in online organizations selling goods and services to consumers around the globe. Shopping online has become the new normal especially now with everyone working from home and being advised to remain at home with their families to prevent the spread of COVID-19....
,

Security of Customer’s Cardholder Data

COVID-19 has forced a lot of businesses big or small to rethink about the ways they interact with their customers. The brick and mortar retailers who had limited or no online presence are the most affected by this pandemic since they can no longer support....