Autoscribe is PCI-DSS compliant service provider Level 1.
Download the current list of PCI-DSS compliant service providers from the VISA site. http://www.visa.com/splisting/
PaymentVision understands how important it is for ARM organizations to accept
payments within a legal framework that includes the Fair Debt Collection Practices Act
(FDCPA), card association and NACHA ACH rules.
That is why the PaymentVision system
has been architected to support the specific notice and disclosure requirements
industry professionals must follow when collecting debt payments online and by phone.
"Mini-Miranda" warnings for online and automated phone payment channels
Print and mail options to meet "mini-Miranda" and NACHA TEL authorization
Maximum payment limits which limits collection activity to the amount owed
Selective card acceptance based on issuer and card type (debit or credit)
Frequently asked questions on PCI-DSS compliance
What is PCI-DSS?
PCI-DSS stands for Payment Card Industry (PCI) Data Security Standard (DSS). PCI-DSS is the industry security standard resulting from a cooperative effort between VISA and MasterCard to establish a single approach to safeguarding sensitive data for all card brands.
What is CISP and how is it related to PCI-DSS?
CISP stands for Cardholder Information Security Program. Initially mandated in June of 2001, the purpose of the program was to protect VISA cardholders’ data. In 2004, CISP requirements were incorporated into PCI-DSS which prevailed as the industry standard for cardholder data security.
What is the purpose of PCI-DSS?
The principal objective of the requirements imposed by PCI-DSS is to protect cardholder data wherever it resides.
Who is affected by PCI-DSS?
PCI-DSS is required of all merchants and service providers that process, store, transmit or otherwise handle cardholder data.
Why should I care?
The VISA Acquiring member (the financial institution that sponsored you as a merchant) is responsible for ensuring that their merchants use only PCI-DSS compliant service providers. Because VISA members (issuers and acquirers) are responsible for any liability that may occur as a result of non-compliance, your business’ ability to get, or keep, a merchant account will depend directly on the compliance level of the service providers you use.
Are certain payment channels exempt from PCI-DSS requirements?
None are exempt. All payment channels which accommodate card payments are subject to PCI-DSS compliance.
Are there levels of PCI-DSS compliance?
Yes. There are three levels of compliance.
Which level of compliance should I look for in a service provider?
Level 1 is the highest level of compliance imposing the most stringent data security requirements upon service providers and payment gateway providers. On-going best practices are enforced by quarterly network security scans and annual On-site PCI Data Security Assessments performed by a third-party Qualified Security Assessor.