PCI Compliance

Vivant

Still scratching your head and trying to make sense of PCI Compliance? Keep your business and customer’s data secured with Milagro Network Security

Milagro - PCI compliance

PCI – Payment Card Industry

Any merchant accepting credit cards, must adhere to PCI regulations.

Milagro - PCI - Payment card

HOW TO SECURE

YOUR NETWORK

HOW TO

SEGREGATE TRAFFIC

HOW TO SCAN NETWORK

FOR VULNERABILITIES

PCI regulations are

created and maintained by

Major Card Brands

Milagro - PCI regulation
Milagro - Non compliance fines

Non-Compliance Fines

Any merchant accepting credit cards, must adhere to regulations.

Milagro - red exclamation icon small

$5,000 to $100,000 monthly penalties

Milagro - red exclamation icon small

Infringement Consequences per cardholder exposed

Milagro - red exclamation icon small

Legal actions against your company

Milagro - red exclamation icon small

Federal Audits by Federal Trade Commission

Milagro - red exclamation icon small

Major Revenue Loss during audits

What are the PCI Compliance levels and how are they determined?

Your PCI Level is determined based on how many transactions you process per year

Milagro - PCI Compliance level 1

Level 1

This is for big box stores and major corporations that process more than 6 million transactions per year.

Milagro - PCI Compliance level 2

Level 2

This is for medium to large size businesses who process between 1 million to 6 million transactions annually any sales channel.

Milagro - PCI Compliance level 3

Level 3

Most small, medium businesses fall in this category where they process between 20,000 to 1 million transactions annually.

Milagro- PCI Compliance level 4

Level 4

Typically a small business that handles less than 20,000 e-commerce transactions per year, or merchants that process up to one million transactions through all channels (card present, card not present, e-commerce).

How to Become Compliant

green-right

Build and Maintain a Secure Network

green-right

Protect Cardholder Data

green-right

Maintain a Vulnerability Management Platform

green-right

Implement Strong Access Control Measures

green-right

Regularly Monitor and Test Networks

green-right

Maintain information Security Policy

Milagro - How to become compliant

What is included?

WITH NETWORK FIREWALL

Milagro - Quarterly scans icon

Quarterly Scans of your network

Milagro - Quarterly SAQ icon

Quarterly SAQ
Completion

Milagro - Breach insurance policy icon

$100k Breach
Insurance Policy

Milagro - Charge back protection icon

$250 Charge
Back Protection

Milagro - Manage compliant firewall

Managed
compliant firewall

Milagro - salad right banner image

Do not jeopardize your business by taking unnecessary risks.

Milagro - Yellow Left Arrow

Secure your network against breaches and hacks

Milagro - Yellow Left Arrow

Quarterly scans as per PCI standards

Milagro - Yellow Left Arrow

Quarterly SAQ completion

Milagro - Yellow Left Arrow

Yearly AoC to keep your behind covered when something does go wrong

salad left

FAQ

Frequently Asked Questions

What are my responsiblities as a merchant?

It is your responsibility to create & maintain a secure environment where the credit card data is not breached.

We provide the firewalls, switches, segregate the network, run quarterly scans, provide you with SAQ and AoC yearly.

You will have to ensure your staff is trained and certified to look out for suspicious activity, ensure you do not use default passwords, do not write card numbers, and discard them securely to name a few of your responsibilities

How often do I need to check my network?

You do not need to, we will scan the network automatically every 3 months. If everything passes, you will receive your SAQ questionnaire to answer and you are done.

If there are any issues, our staff will work with you to resolve them before retesting the network.

How do I know if I am compliant?

There are 12 steps to PCI compliance that you must follow and if all steps are successfully completed, then you will get your compliance letter. These are usually provided every 3 months after a successful network scan.

How do I manage the Guest WiFi?

Guest WiFi is one of the easiest ways for someone to breach into your network. You must take measures to ensure your Guest WiFi is segregated from all other traffic with no access to credit card data.

With our standard PCI Compliance deployment, your Guest WiFi is physically segregated from all other network traffic

Am I PCI compliant and secured if I use the ISP equipment?

No, using the ISP equipment is perhaps the worse decision you can make. Using the default equipment, you will expose yourself and your business to unnecessary risks.

The ISP is providing you the required equipment to get you online but not to keep your network secured and PCI Compliant

Who do I contact in case of support?

Our support team has full access to our managed firewalls, switches, guest WiFi, and your network. Please contact our support team in case you have any questions.