Site Search

  

Contact ETA | MyETA | About ETA

Home
About ETA
Join ETA
Events
News
Information Resources
Education
Advocacy
Media Relations
Employment
Contact Us
ETA Forums
Online Networking
Advanced Search
ETA Member Login
Quick Links

Visa Requires Level 4 Merchant PCI Compliance Plans by July 31 PDF Print E-mail
Visa will give aquirers with Level 4 merchants until July 31 to have PCI compliance plans in place. Level 4 merchants handle less than a third of transactions in the Visa system but represent more than 99 percent of the merchants that accept Visa cards. Because the group is so large and relatively less sophisticated, it represents more potential for cardholder data compromises than Level 1, 2, and 3 merchants combined.

The Visa CISP Bulletin—“Level 4 Merchant Compliance Program Requirements”—issued May 14, 2007, provides an outline of what is expected from each acquirer and illustrative guidance on developing a plan.  Each compliance plan “must include: (1) a timeline of critical events; (2) a risk-profiling strategy; (3) a merchant education strategy; (4) a compliance strategy; and (5) compliance reporting.”

Many acquires may have already submitted Level 4 compliance plans as part of the PCI Compliance Acceleration Program (CAP); however, those that do not meet the July 31 deadline will be subject to costly risk control measures.

Back

ETA Members Only
Login here to access your member information, membership status and member-only content.
Upcoming Events

Strategic Leadership &
Networking Forum
October 21-23, 2008
Chicago, IL

 

2009 ETA Annual
Meeting & Expo
April 21-23, 2009

Las Vegas, NV


Electronic Transactions Association
1101 16th Street NW Washington, DC 20036
Toll Free: 800.695.5509 Tel: 202.828.2635

Privacy Statement | Antitrust Laws & Trade Associations
© 2007 ETA The Electronic Transactions Association. All rights reserved.