Software for Party Rentals, Events, and Services
 
SupportKnowledge BasePayments
Knowledge Base
Getting Started Account API Best Practices Blog Calendar Contracts Customers Dashboard Delivery / Routing Document Center Emails IO Phone Leads Locations Marketing Organizations Payments Pricing Quickbooks Quote Pages Rental Inventory Reports Sales CRM Settings Subscription Surveys and Testimonials Taxes Website Integration Workers Workers App Embedded Documentation
Related Articles
Properties
Author Susan M.
Tags PCI Compliant, credit card security, secure, protect credit card information, PCI Compliance

Payments - PCI Compliance

PCI Compliance is a security process to ensure cardholder data remains secure. For payment integration with Global Payments (OpenEdge), CardConnect, Square, or PayPal, the card data passes directly from client to merchant provider, but for others (Authorize.net, PayJunction), it runs through our server first, and even though we don't store the card details, since it first goes through our server before passing to the merchant gateway, it would be deemed non-compliant. The latest PCI requirements may require a website scan to take place.

Many merchant providers charge a PCI compliance fee or non-compliance fee. Sometimes they tell you it's because you aren't compliant and sometimes they tell you the fee is passed on to you to cover their own costs for them to be PCI compliant. Either way, it never hurts to call and ask your merchant provider to see if you can avoid those fees.

Global Payments (OpenEdge)

To avoid a monthly non-compliance fee showing up on your merchant account statement, please read the following. You'll need to fill out the questionnaire when you first start, and then also annually (you should get an email notifying you of this). You'll also have to have a quarterly website scan.

Overview:

1. Go to https://pciassure.gpndi.com/ and login
2. Answer the basic info about your business
3. Payment Related Services: No
4. Processing Method, choose: Processing using a shopping cart
4a. Shopping Cart: Payment page entirely outsourced

5. For the company policy, choose the 'I do not have one, I will implement template'
6. For website scan, enter your website domain name. Click 'Scan site', wait for email in a few days to resolve issues. (or use https://rental.software if not using our wordpress integration)

7. The scan results will need manual intervention to resolve: 
- mark related hosts to no
- in special requests mark all as 'securely implemented'
- in the vulnerabilities, filter by pci compliant No, and mark as false positive with reason: security patches are applied nightly

Video walk-through: 
https://www.loom.com/share/ff13f30204c04cac9fe9c2d...

PCI testing is an ever changing process.  If you have trouble with the instructions above, please contact Global via the methods below.

PCI ASSURE

800-338-6614 Option 5
support@gpndi.com

Fiserv (CardConnect / Clover Connect)

Fiserv and its subsidiary CardConnect (Clover Connect) both require merchants to maintain PCI DSS compliance annually.

If you are using Fiserv through IO, you will receive an onboarding email from Fiserv Compliance Manager or SecureTrust, their approved PCI vendor.

This includes access to a secure PCI portal where you can complete your SAQ (Self-Assessment Questionnaire) and vulnerability scan (if applicable).

Steps for completing Fiserv PCI compliance:

  1. Look for an email from pci@fiserv.com or support@securetrust.com containing your login credentials.
  2. Log in to the Fiserv Client Portal or SecureTrust PCI portal.
  3. Complete the required Self-Assessment Questionnaire (SAQ).
  4. If prompted, perform a quarterly vulnerability scan (usually not required for hosted or tokenized integrations).
  5. Save or download your PCI certificate for your records.

If you fail to complete PCI compliance, Fiserv may apply a monthly non-compliance fee until resolved.

For help, contact: 📞 Fiserv PCI Support: 855-403-4630 📧 pcisupport@fiserv.com


Square & PayPal

No action is needed.

Is this article helpful?
0 0 0
Powered by: UseResponse - Knowledge Management Software