PCI Compliance

What it is and why you need to know!

The Payment Card Industry (PCI) Data Security Standard was created by major credit card companies to safeguard consumer information. Visa, MasterCard, American Express, and other credit card associations mandate that merchants and service providers who accept credit cards meet certain minimum standards of security when they store, process and transmit cardholder data.

Ready to get started?

PCI compliance for restaurant operators depends mainly on three components:

Software Version
Infrastructure and security of the network
Settings within the software

Restaurant Owners are Responsible for Customer Credit Card Data

Many restaurant owners and managers do not know that PCI data security compliancy is their responsibility.  They properly set up their business with all the licensing, inspections, and business systems required for businesses in their area.  Often, nobody informs them that, if they are going to process customer credit card information, they are responsible for the security of that data.

Secure all Data Access

So, what should you do? Upgrade your POS software to a PA-DSS (Payment Application Data Security Standard) validated version. Ensure that you are running a version of Windows that is currently supported by Microsoft on all of your POS hardware and that you update the Operating System anytime Microsoft releases a patch. Create and maintain unique Windows logon usernames for each person that must access the Aloha Back Office PC. Be sure that you have installed a commercial grade firewall, that it has been properly configured to restrict inbound and outbound traffic, and that it is maintained and updated. This includes wireless internet access too!  Use and regularly update anti-virus software. Lock your office doors and your computers.  Remember, it is never a good idea to use your POS computers for email or going online. APS recommends install a second computer in the Back Office and that it is isolated away from the POS network for email and web browsing. POS Data Security and PCI Compliancy NEEDS to be a BIG concern for Merchants. It is crucial that you are using technology that protects your customers and ultimately protects you.  NCR Aloha, as a POS industry leader, has developed validated data security software that works seamlessly with all of their Point of Sale technology.

APS offers NSS (Network Security Services) – A complete Network Security Suite Security Package

Although PCI compliancy is ultimately the responsibility of you the merchant, APS can provide a solution to enhance your security and decrease your risk of having a credit card breach. We offer a network security package, NSS, which includes:

Site Shield, a managed commercial-grade hardware firewall service and much more.

Secure Access, a two factor secured application for accessing the POS back office PC and network.

Threat Defender, an ongoing monitor and network defense service.

In addition, Network Security Services also includes a breach assistance program, which allows customers to receive up to $50,000 in coverage in the event that they suffer a suspected or actual data breach.

Please contact APS to get started on your PCI compliance today!

Ready to get started?