Concrete inFocus - Spring 2015 - (Page 13)

best practices Data Security of Credit Card Processing in the Concrete Industry Shannon Walcott A s a specialist for Credit Card Processing in the concrete industry, I have talked with many companies that share a common concern: keeping their customers' information secure. Due to the nature of the concrete industry, storing repeat customer information might be necessary. While storing this information may be needed to operate efficiently, how the information is stored might put your company at risk for a security breach. The Payment Card Industry (PCI) Data Security Standard (DSS) was created to help protect cardholder data that is processed, stored or transmitted by merchants. The PCI Security Standards Council, founded by American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa, Inc., require that all merchants maintain compliance with the PCI DSS. PCI DSS is a set of comprehensive requirements to help ensure the safe handling of cardholder data throughout the payments chain. PCI Compliance refers to the responsibility of the business owners to ensure that they are accepting debit and credit card payments in the most secure manner and environment possible. This includes the aforementioned storing of credit card data as well. Compliance is an ongoing, daily commitment of the business to maintain and achieve the most secure environment. A proactive approach to compliance is the only recommended approach. Achieving and maintaining PCI compliance can be a daunting task if you are going this route on your own. Consulting knowledgeable processionals for this is recommended, especially when you are relying on a web-based processing solution. Completing the required, annual self-assessment questionnaire can help uncover vulnerabilities or areas of concern. Maintaining PCI compliance is well worth the investment! In comparison, the cost and the time it will take to recuperate from a security breach far outweigh the investment cost required to secure your processing solutions and maintain compliance. A merchant who uses a web-based processing solution will need to maintain and secure the firewall and server, anti-virus and anti-spyware software, passwords, etc. as well as restrict and monitor general access to the processing solution or software, and its different components. A merchant who uses a credit card terminal will need to maintain similar standards as well documentation of the type of terminals and locations in case there is a security breach. BASYS Processing offers secure and compliant processing solutions, as well as person assistance with the annual questionnaire requirements. We have a fulltime PCI compliance team dedicated to our merchants. In addition, BASYS Processing offers $100,000 Breach Insurance Coverage to use in the event a data breach should occur. Breach Insurance is available to our merchants for a $5.95 monthly fee. ■ Shannon Walcott, a specialist at BASYS Processing Inc., has worked with many ready mix, concrete and aggregate companies in achieving PCI compliance as well as lowering credit card processing fees. For more information about BASYS, PCI compliance or how to reduce the cost of taking credit cards, feel free to contact her directly at 913-214-5021 or swalcott@basyspro.com. concrete infocus ı 13

Table of Contents for the Digital Edition of Concrete inFocus - Spring 2015

Ready Mixed Plant Innovations
Data Security of Credit Card Processing in the Concrete Industry
Oldcastle Material Group
How the Concrete Paving Industry is Incorporating Sustainability into Our Practices
Index of Advertisers
The Trail to Your Future Business Should be Paved with Concrete
Your Biggest Environmental Threat in 2015 is NOT Who You Think!
Why is the Air There? Thinking about Freeze-Thaw in Terms of Saturation

Concrete inFocus - Spring 2015