Are you PCI Compliant?

on Wednesday, October 2, 2013 8:00:00 AM

It seems like every other day we are hearing about someone close to us whose identity has been stolen, and what a mess it has made for them. What we don’t hear about as often is the ripple effect that these crimes can have, and how detrimental they can be to businesses. To help prevent this, all major credit card companies are urging businesses who process and accept credit cards to follow what’s called the Payment Card Industry Data Security Standards (also known as PCI DSS). With the upcoming release of Version 3.0 of the PCI DSS, it is important to understand what these standards are, why they are important, and what Kendall Howard can do to help!

First of all you may be asking, what are the PCI Data Security Standards? These standards lay out the minimum level of security that is required for organizations that handle cardholder data for all the major debit, credit, prepaid, e-purse, ATM and POS cards. This set of 12 requirements addresses the security of the business’ network from the way the cardholder data is captured, the strength and layout of the firewall, to the physical security of the equipment used in transmitting or storing the data.

It is not required by law for a business to be PCI Compliant; however it is required by the PCI Security Standard Council (PCI SSC). This council was formed back in 2004 when all the major credit cards companies merged their individualized security policies to create the PCI DSS we know today. The PCI Data Security Standards are written, revised, published and managed by the PCI SSC. The PCI Council has developed a tier system that groups each merchant by their annual transaction volume. Depending on the tier your business falls under there is a list of specific validation requirements that you will have to submit to prove you are PCI Compliant. If your business is found to not be PCI DSS Compliant, it could result in the termination of credit card processing privileges.

Although the PCI Data Security Standards are not law…yet, the consequences that can result from a security breach could be detrimental to any business. As the modern day warfare against internet hackers and identity thieves continues to grow, credit card companies are holding business owners accountable. If cardholder data should get into the wrong hands, the business could be susceptible to lawsuits, fines, penalties, or could even lose the right to accept credit card transactions all together. Can you imagine trying to run a retail store or online business without the ability to accept credit cards? Credit/Debit cards are currently the most popular form of payment. Even the boy scouts selling Christmas wreaths door to door have credit card machines! So whether your transaction volume warrants annual assessments or reviews by the PCI Standard Security Council, or you are small enough to manage the compliancy on your own, these 12 requirements are a solid guideline for protecting your business.

It seems as quickly as the newest and greatest protection plans are implemented, hackers are finding new ways around them. With the upcoming release of the PCI DSS Version 3.0 later this year, many people are concerned about how this will affect them, or what steps they will need to take to ensure compliancy is met. So, how can Kendall Howard help!?!? As part of the PCI DSS, restricting physical access to the equipment that houses or transmits card holder data is critical. Kendall Howard manufactures and stocks a full line of locking wall mount cabinets, full size floor cabinets, and lock boxes to help control the physical access to your network equipment. Securing point of sale (POS) systems and payment devices will also become crucial. With the All-in-One Anti-Theft PC Stand, and many other custom POS security products, Kendall Howard can help protect all of your POS devices.

Do you have numerous locations that you are building or need to retrofit? No problem! Kendall Howard specializes in multi-location deployments! We can bundle your entire solution and ship to each location. Because all Kendall Howard products are manufactured here in the USA, we are able to ship same day. This reduces your lead times and project costs. We will ensure everything you need will show up at each location on time, and under budget. For more information about Kendall Howard’s deployment capabilities click here.

Whether you’re a small business owner with a single retail store, or a franchise with 10,000 locations, Kendall Howard can help assess your physical network access points and recommend the proper equipment to securely house equipment used in collecting, storing and transmitting cardholder data.

For more information on the PCI Data Security Standard, or to fill out a self- assessment questionnaire to determine if you are PCI Compliant click here.

If you have any other questions please feel free to call us at (651) 213-1333, email us at, or click the Live Chat button!


Show Comments Per Page
Showing 1-0 of 0

You must be logged in to post comments.