PCI Compliance & Payment Processing
PCI Compliance is extremely important for payment processing. The Payment Card Industry (PCI) Data Security Standard is a worldwide standard for payment card and consumer financial data protection. Put more simply, PCI is a set of rules and regulations put in place to safeguard credit card data. It incorporates the requirements of the Visa USA Cardholder Information Security Program (CISP) and the Visa International Account Information Security (AIS) program, the MasterCard International Site Data Protection (SDP) program, as well as the security requirements of American Express DSS, DiscoverCard DISC and the Japan Credit Bureau (JCB). The major card companies (ie VISA and MasterCard) require all merchants (businesses, non-profits, schools, even churches) who process credit cards to adhere to the PCI compliance security standard.
What does PCI Compliance mean for my organization?
Every non-profit organization that accepts credit cards must adhere to PCI. If your non-profit organization accepts credit cards online, you have the responsibility to follow these regulations. You can rest assured that all DoJiggy services are fully PCI compliant. But the requirement also relates to you - the merchant, ie schools and non-profits organizations, in addition to your merchant services provider and your online fundraising software provider maintaining compliance. You also must take on this responsibility. Luckily, we have made it easy for you!
How do I show PCI compliance?
Please review the standards and fees for your underwriter. If you need a PCI Attestation of Compliance, see this help FAQ or contact us.
Our payment processing underwriter, Total Merchant Services, takes PCI compliance very seriously and has developed programs and standards to assist merchants.
Total Merchant Services (TMS) PCI Compliance
TMS has created a PCI compliance website to assist merchants in reviewing security standards and requirements. All merchants are required to complete the required self-assessment questionnaire. You may do this by phone or by submitting the supplied form. More information and a download of the Self-Assessment Questionnaire are included on this page.
If more complex levels of compliance assistance are required, TMS has partnered with Trustwave to provide scanning and additional support.
There is a $4.95 monthly PCI fee on TMS accounts, but it is waived for the first year of service. Non-compliance will result in additional fees, incurred monthly until the organization comes into compliance.
DoJiggy Payments PCI Compliance
For clients using DoJiggy Payments, no display of compliance is needed on the part of the non-profit organization. DoJiggy and WePay maintain compliance on these accounts.