Internet merchants are required to be compliant with the Payment Card Industry (PCI) cardholder data security requirements. Using a quality e-commerce application like ProductCart can help you achieve this goal. To start, you may want to take a few minutes to get more familiar with the concept of PCI Compliance: knowing that PCI compliance sounds like hieroglyphs to most people, the PCI Security Standards Council has put together some documents to make things easier to understand and help you get started.
ll merchants are required to file a self-assessment questionnaire. See the document “Payment Card Industry (PCI), Data Security Standard, Self-Assessment Questionnaire, Instructions and Guidelines”. As of July of 2011, the latest version of this document can be downloaded here.
To learn more, visit PCI Security Standards.
When can you use a Short-Form Questionaire (SAQ-A)If your store is using ONLY any of the following payment options (you may be using more than one), then you can use SAQ-A:
- ProductCart Payment Gateway
- PayPal Express Checkout
- PayPal Standard
What these payment systems have in common:
- There is no payment form hosted on your store.
- The payment form posts data directly to a secure URL hosted by the payment gateway (e.g. ProductCart Payment Gateway)
You can also use this questionnaire when you do not accept credit card payments (e.g. your only payment method is “Net 30”).