• HOME
• INDUSTRY SOLUTIONS
  Business to Business eCommerce Mail Order & Telephone Order Retail Restaurant Supermarket Non-Profit Petroleum & Convenience Hotel Insurance Education Automotive Government Property Management Childcare Franchise & Association
• PRODUCTS & SERVICES
  Credit & Debit Card Processing Prepaid Solutions Check Processing Merchant Cash Advance Gateway Services
• PCI COMPLIANCE
  PA-DSS PCI-DSS
• SUPPORT SERVICES
  Industry Terms Q & A
• ABOUT US
  Contact Us Locations Our Team Partners Careers Testimonials Submit a Testimonial

PA-DSS

Online threats and data hacking are on the rise. Cyber threats and security breaches run rampant, and software developers must take steps to keep online shopper data safe while defending their own software against attack. Incidents with cyber security breaches may cost businesses over $500,000 to resolve.

The Payment Card Industry Council has responded to this threat by requiring software developers to be PCI compliant, too. Cardholder data must be validated as secure for payment applications that store, transmit or process data. PA-DDS requirements are not optional for software developers; merchants that touch cardholder data must comply with these guidelines. These requirements stem from the PCI DDS, and are required for any merchant that accepts plastic payments. PA-DDS guidelines ensure that the software that merchants use to process credit/debit card payments is PCI DDS compliant.

Merchant’s First Solutions for PA-DDS and PCI-DDS Compliance

Point-To-Point Encryption (P2PE)

The PCI Security Council accepts one principal “out of scope” for payments, called Point-to-Point Encryption technology. Any system components that simply process and transmit encrypted data, and are adequately isolated from the encryption and decryption environments, are excluded from the scope of a PCI DDS review. This technology must not have the ability to decrypt the data.

Hosted Payments

We also provide Hosted Payment options to the developer community that allows their applications to bypass PCI DDS compliance. This process enables the user to forego touching sensitive cardholder information using a Level I PCI-compliant facility.

By removing personal data from the merchant’s environment, the merchant’s network is no longer a target for fraudulent hackers. This significantly reduces the risk, cost, liability and hassle of achieving and maintaining PCI compliance as a merchant.

By ensuring your payment application is validated with the PA_DDS, or is out of scope all together, gives you the reassured security and value to your brand.

PA-DSS

PCI-DSS