Why Comply?

American Express, MasterCard, and Visa impose fines for non-compliance. For fine information see the Visa or MasterCard compliance regulations.


PCI DSS Basic Requirement

Testing is required for all external IP addresses (Internet connection points such as your company website, mail server, firewall, dial-up modem, wireless AP, etc.). A good rule of thumb is if you have email at your business then you need to be tested.
If you do not have any Internet connection then you should purchase the "No Internet PCI DSS Compliance" product.
If you have questions, please contact us at support@complyguardnetworks.com

Safe Harbor

Visa defines safe harbor as the following:
"Safe harbor provides members protection from Visa fines and compliance exposure in the event its merchant or service provider experiences a data compromise. To attain safe harbor status:

1. A member, merchant, or service provider must maintain full compliance at all times, including at the time of breach as demonstrated during a forensic investigation.

2. A member must demonstrate that prior to the compromise their merchant had already met the compliance validation requirements, demonstrating full compliance."

Level 4 merchants are encouraged to validate (report) their compliance status to their acquirer but if a Level 4 merchant does not, then the merchant will NOT have protection from fines in the event of a compromise.

Click here to begin PCI DSS Compliance