January 1, 2015 marked the official date that PCI DSS 3.0 became mandatory for merchants. There have been numerous articles speculating how this will impact merchants' success at passing compliance with their PCI Qualified Security Assessors (QSA). The new security standards were designed to eliminate the increasing prevalence of large scale breaches, but have caused some confusion and concern in smaller merchants, who struggle balancing costs vs. risks.
In a sneak preview of its 2015 PCI Compliance Report, the managed IT services giant, Verizon, hinted at two key problem areas that cause merchants to fall out of PCI DSS compliance: Struggling to maintain PCI Compliance year round, and firewalls.
Smaller Merchants Best Practices
Verizon's annual PCI report will include findings based on data from Fortune 500 and large multinational firms in more than 30 countries. But what about smaller merchants? PCI DSS 3.0 and the scrutiny of QSA's are still a real concern despite their size.
It is a good time to review your basic security practices. Solupay partners with Control Scan to offer easy and affordable PCI Compliance to smaller merchants. We invite you to download their whitepaper: The Top 5 Security Best Practices for Small Merchants. As always, if you have any questions or concerns about PCI DSS 3.0, contact the experts at Solupay.