Related Stories

  • Small and mid-sized retailers lax on credit card security, survey finds
    Less than half of the small to mid-sized retailers surveyed had completed a Payment Card Industry Data Security Standard (PCI DSS) self-assessment, according to a poll by the National Retail Federation and First Data Corp.
  • Visa targeted by hackers over WikiLeaks controversy
    Online retailing was disrupted yesterday when Visa and Mastercard were targeted by hackers following the firms' refusal to process WikiLeaks payments.
  • Credit Card Transactions: Held to a Higher Standard
    There are numerous access points for thieves to make off with credit data, with just as many fraud techniques available. Drew Amorosi surveyed experts in the field to get their opinions on fraud trends, the effectiveness of standards, and what can be done to protect merchants and customers alike, and not just the ‘five families’ of the credit card Cosa Nostra.
  • Visa suspends ePassporte electronic money service
    Visa, the international payment card group, has taken the unprecedented step of suspending the Visa transaction processing facilities of one of its prepaid debit card members, ePassporte.
  • Scam targets Visa, MasterCard online verification services
    Trusteer recently warned that the Zeus (Zbot) financial malware is targeting online banking customers of 15 leading US financial institutions by exploiting two trusted credit card security programs – Verified by Visa and MasterCard SecureCode.

Top 5 Stories


Visa offers program encouraging merchants to adopt chip-enabled terminals

10 February 2011

Visa is encouraging merchants to adopt EMV-compatible chip terminals capable of processing either contact or both contact and contactless payments as part of a Payment Card Industry Data Security Standard (PCI DSS) compliance program.

Visa’s program will eliminate the requirement that eligible merchants annually validate their compliance with the PCI DSS for any year in which at least 75% of the merchant’s Visa transactions originate from chip-enabled terminals. To qualify, terminals must be enabled for contact or dual-contact and contactless interface chip acceptance.

Merchants outside of the US are eligible for the new program from March 31, 2011. Visa Europe has announced a similar program. The program is not currently available in the US because of the enactment of recent debit card regulations.

“With the United States facing government price controls on debit and restrictive routing and exclusivity rules, it is not feasible or appropriate to drive the market toward major infrastructure investments, especially in an environment where financial institutions could lose billions in revenue as a result of the regulation”, said Bill Sheedy, Visa’s group executive for the Americas.

International merchants may qualify for the program if they have either previously validated PCI DSS compliance or provided a plan to come into compliance, and if they have not been involved in a recent material breach of cardholder data.

Qualifying merchants must continue to protect any sensitive data that remains in their care by ensuring their systems do not store track data, security codes or personal identification numbers, and that they continue to adhere to the PCI DSS standards as applicable.

This article is featured in:
Application Security  •  Compliance and Policy


Comment on this article

You must be registered and logged in to leave a comment about this article.

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×