DigitalRez

PCI (Payment Card Industry) Compliance

After gaining Official PCI accreditation CEO and founder of Digital Rez – Ken Lahoda - commented...

“We understand the effort it takes to achieve and maintain PCI standards. We began the process with one of our largest clients in the UK three years ago and understand it would become a matter-of-course for all software vendors shortly thereafter. These ever changing standards will present particular technology hurdles for the smaller software vendors to overcome and for businesses in general to understand the possible ramifications of not having accredited PCI compliant software - Quite simply, the risks are too great.”


Some software vendors have simply stated that the costs are too great to pursue certification for their software products. This leaves their clients open to potential risks moving forward and the possibility of being denied credit car processing services.

To assure their PCI declarations are accurate, businesses should ask to see PA-DSS (Payment Application Data Security Standards) certification for the software they use. Asking for PCI assurances from a software vendor has nothing to do with a vendors software being certified as compliant. Certification is needed by businesses to provide to their banks and financial institutions.

The Payment Card Industry Data Security Standard (PCI DSS) Program is a mandated set of security standards that were created by the major credit card companies to offer merchants and service providers a complete, unified approach to safeguarding credit cardholder information for all credit card brands.

Digital Rez are proud to annoPCI Credit Card Authorizationunce that all of their reservation software products have been certified as PCI compliant. Certified software includes the following versions and above:

 

 

  • ROS2006 V197 & above
  • RVTRipsetter V197 & above
  • RezExpert 7.1 V122 & above

General Manager for Digital Rez International – Kevin Hall – stated “We are very proud to be one of the few reservation software companies in the world to achieve this status. We have invested over $350,000 in development to ensure we meet and in many cases surpass PCI requirements for software applications.”

PCI Compliant Software

The PCI Data Security Standard requirements apply to all payment card network members, merchants and service providers that store, process or transmit cardholder data. This includes the software systems from development companies such as Digital Rez. PCI
The list of requirements changesregularly. Digital Rez systems are constantly updated to comply with the latest PCI standards. All software venders whose systems store process or transmit credit card information need to have those systems independently verified by a QSA (Qualified Security Assessor) as PCI Compliant and listed with the PCI council website.

What does all this mean to you?

If you are a company buying compliant certified software you only have part of the puzzle. The software is only part of your PCI declaration. The rest of your declaration is regarding how you use the software. You must follow the standards and procedures for securing access to the system and adhere to other PCI procedures as laid out by the PCI council.

What could happen?

More banking institutions are requiring businesses to declare their PCI compliance, which includes verifying that their in-house software has been independently verified as being compliant. Any processor can turn off credit card processing to any merchant using software not listed on the PCI councils website. Banks and processors are required to ensure their merchants are PCI compliant, If they are not, they have the power to suspend the merchants account.

Using a company that just says “yes the software is compliant” will not be enough. The company should provide documentation to verify the claim and most importantly, be listed on the PCI website.

Common mistakes

One of the most common mistakes we see businesses do is simply ask if there software vendor is PCI Compliant. That has nothing to do with the software the vendor sells being compliant. Customers should ask a straight forward question…

“Has your software been independently verified and certified as PADSS compliant.”

If it has, then it should be listed on the PCI councils website and the certification should be available.

View the latest DigitalRez PA-DSS product Certification by clicking below

ROS2006 (click here)
RVTripsetter (click here)
RezExpert 7.1 (Click here)

Click here for PCI Compliance questions answered
RezCollect

PCI compliant RezCollect Payments

Reduce your Credit Card Collection Rates - With RezCollect

Digital Rez has partnered with one of the largest credit card processors in North America - Jetpay systems. Jetpay process credit card payments world-wide for Expedia.

Digital Rez clients can now seamlessly process their credit card payments though their front desk system, with RezCollect

Many of the other processing choices are gateways, which then need to use a processor. These gateways often use agents to sell the service on their behalf, adding to the cost to you, the business owner because there is usually a “middle man fee” of some sort involved.

Rates

Jetpay is a processor so they can always access the best rates. Many clients have been quoted “blended rates” by other suppliers. This means that an average rate is given to all credit card payments. One of the issues this brings is that 80% of all credit card transactions are Visa or MasterCard, which have the lowest processing rates, with American Express and Diners Club demanding the higher rates. Obviously this does not optimize the processing rate.

Pass Through Rates are the answer – This is when the processor passes on the rate charged per transaction plus 0.5%. Companies such as Wal-Mart command these rates. With Jetpay, the same functionality is now being offered to you the small business owner.

Any client not using our front desk system can still access these fantastic processing rates and process the transaction using their standard manual terminal

To find out more, signup using the form opposite.
RezCollect - Sign Up Below
 
 
 
 
 
 
 
  
 
 
Powered By ChronoForms - ChronoEngine.com
feed-image

 

Digitalrez sitemap

All rights reserved. © 1998 - 2010 - Digital Rez International Inc.
ROS2000, ROS2006, RezExpert, RezRobot and "We Bring Your World Together"
are all Trademarks of Digital Rez International Inc.
Please direct any comments or concerns regarding this site to webmaster@digitalrez.com

Joomla template created with Artisteer.