I just noticed on the monthly merchant card processing statement, there are two new charges called “PCI DSS compliance Admin Fee” and “PCI DSS Non Compliance fee”. The first one is $6.95 per month and the second one is $19.95 per month.
I called the merchant service company and they told me that if I complete the PCI certification, they will remove the PCI DSS Non Compliance fee, but the PCI DSS compliance admin fee is an ongoing charge.
So what is PCI DSS? Here is what I learned from the PCI Security Standards Council:
PCI Data Security Standard represents a common set of industry tools and measurements to help ensure the safe handling of sensitive information. Initially created by aligning Visa’s Account Information Security (AIS)/Cardholder Information Security (CISP) programs with MasterCard’s Site Data Protection (SDP) program, the standard provides an actionable framework for developing a robust account data security process – including preventing, detecting and reacting to security incidents. The updated version, version 1.1, developed by the founding members of the PCI Security Standards Council, became effective with the launch of the PCI Security Standards Council.
So be sure to complete the certification process. Your merchant account company will tell you how to do it. But be prepared to answer a long list of questions…