The following list provides recommendations to help merchants before, during, and after PCI validation is achieved. This list was created to help merchants avoid fines that often result from non-compliance.
- Call SecurityMetrics for a consultation on becoming PCI compliant. SecurityMetrics provides free PCI scoping to help merchants know what needs to take place for PCI validation.
- Keep current with PCI compliance. Take note of scheduled scan and questionnaire expiration dates. Set reminders on business calendars to review compliance status and perform required tasks.
- Take advantage of glossaries and support videos found at the SecurityMetrics website.
- Call for help. SecurityMetrics provides live 24/7 live technical support and is happy to help with the PCI validation process.
- Check all email from SecurityMetrics. SecurityMetrics sends reminders via email to alert merchants of the following: A failing scan, a failing questionnaire, recertification of Self Assessment Questionnaire (SAQ) is necessary, or Site Certification has expired.
- Announce PCI compliance to customers. PCI compliance adds to business credibility. It lets customers know their sensitive information is handled securely. SecurityMetrics provides PCI certified logos for business websites that pass vulnerability tests
PCI compliance is a process not an event. Following these guides simplifies the process.