WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING. EMV WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the.

Slides:



Advertisements
Similar presentations
Surviving the PCI Self -Assessment James Placer, CISSP West Michigan Cisco Users Group Leadership Board.
Advertisements

Payment Card Industry Data Security Standard AAFA ISC/SCLC Fall 08.
Session 4: Data Privacy and Fraud Moderator: Bill Houck, Director, Risk Management, UATP Panelist: Peter Warner, EVP, Retail Decisions Cherie Lauretta,
October 28, Who? What? When? Why? Comply with PCI compliance policies set forth by industry Create internal policies and procedures to protect.
National Bank of Dominica Ltd Merchant Seminar Facilitator: Janiere Frank Fraud & Compliance Analyst June 16, 2011.
WHAT IS EMV? A joint effort between Europay, MasterCard and Visa It is a security framework that defines the payment interaction at the physical, electrical,
Complying With Payment Card Industry Data Security Standards (PCI DSS)
This refresher course will:
EMV, PCI, Tokenization, Encryption What You Should Know for 2015
Protecting Your Customers’ Card Data ASTRA Presentation Brian Chapman and Peter O’Rourke.
1 U.S. EMV Migration Update and Best Practices Hap Huynh, Senior Director Risk Products April 2015.
Smart Payment Processing ™ Protecting Your Business from Card Data Theft Presenter: Lucas Zaichkowsky.
1 Credit card operation and the recent CardSystems incident HONG KONG MONETARY AUTHORITY 4 July 2005.
Northwest Card Association Acquirer Update January 2012.
Contactless Payment. © Family Economics & Financial Education – January 2007 –– Financial Institution Unit – Contactless Payment - 2 Funded by a grant.
Credit Card Compliance Regulations Mandated by the Payment Card Industry Standards Council Accounting and Financial Services.
© 2012 Presented by: Preparation For EMV Chip Technology Keith Swiat.
© Vendor Safe Technologies 2008 B REACHES BY M ERCHANT T YPE 70% 1% 9% 20% Data provided by Visa Approved QIRA November 2008 from 475 Forensic Audits.
Memorial University of Newfoundland An Update on Chip September 26, 2007.
Bank Card Protector Policy Frates Insurance & Risk Management By Thomas P Mulligan
Data Security Standard. What Is PCI ? Who Does It Apply To ? Who Is Involved With the Compliance Process ? How We Can Stay Compliant ?
Geneva, Switzerland, 4 December 2014 Evolving Payments into The Digital World Richard Smith, Vice President, MasterCard Customer Fraud Management
EMV’s Impact on U.S. Retailers – It’s Coming! Presented by: Chris Francis VP, Market Development February 21, 2014.
Why Comply with PCI Security Standards?
PCI and how it affects College Stores… ROBIN MAYO | PCIP ECOMMERCE MANAGER EAST CAROLINA UNIVERISTY.
Philip is a subject matter expert in Accenture’s Payment practice with more than 30 years experience across payments, transaction processing, networks,
Payments technology and security
Central Michigan University Payroll and Travel Services 3.
Universal Transaction Gateway® (UTG®), 4Go®, and i4Go® are covered by one or more of the following U.S. Pat. Nos.: , ,
Teresa Macklin Information Security Officer 27 May, 2009 Campus-wide Information Security Activities.
DATE: 3/28/2014 GETTING STARTED WITH THE INTEGRITY EASY PCI PROGRAM Presenter : Integrity Payment Systems Title: Easy PCI Program.
PCI DSS Readiness Presented By: Paul Grégoire, CISSP, QSA, PA-QSA
R U Ready? V M E EUROPAY MASTERCARD VISA EMVco was formed in 1999.
© 2014 CustomerXPs Software Pvt Ltd | | Confidential 1 Tentacles of Fraud #StarfishBanks CustomerXPs Software Private Limited.
Contactless Payment. © Family Economics & Financial Education – January 2007 –– Financial Institution Unit – Contactless Payment - 2 Funded by a grant.
EMV – The New Landscape 21 Days & 12 Hours
Confidential – For Discussion & General Information Purposes Only EMV to Card Not Present Fraud Gavin Levin, CTP eReceivables Consultant.
Introduction To Plastic Card Industry (PCI) Data Security Standards (DSS) April 28,2012 Cathy Pettis, SVP ICUL Service Corporation.
Agenda EMV – What Is It? EMV In The UK EMV Is Coming To The US
The next generation of payments is here. Is your business ready?
Getnationwide.com Let’s Talk about EMV Danielle Rourke.
Data Security and Payment Card Acceptance Presented by: Brian Ridder Senior Vice President First National September 10, 2009.
What you need to know about PCI-DSS Jane Drews Chief Information Security Officer Information Security & Policy Office
ThankQ Solutions Pty Ltd Tech Forum 2013 PCI Compliance.
e-Learning Module Credit/Debit Payment Card Acceptance and Security
SMARTER. TOGETHER. The Mobility of Fraud Michael Loox, CFI Director of Loss Prevention & Safety Coffee Bean and Tea Leaf David Johnston.
The Payment Card Industry (PCI) Data Security Standard (DSS) was developed to encourage and enhance cardholder data security and facilitate the broad.
Langara College PCI Awareness Training
Midsouth User Group Annual Conference
VeriShield Protect Revolutionary technology that simplifies PCI DSS compliance with no system upgrades Now available on V x Solutions!
Global Product Marketing
EMV: What is it and how will it impact your business.
Fall  Comply with PCI compliance policies set forth by industry  Create internal policies and procedures to protect cardholder data  Inform and.
Standards in Use. EMV June 16Caribbean Electronic Payments LLC2.
Summary of Changes. General These are changes that have come up in many EMV migrations that I have assessed and been involved in. The changes are broken.
Confidential and Proprietary - NOT TO BE DISTRIBUTED WITHOUT THE EXPRESS WRITTEN PERMISSION OF BANK OF AMERICA MERCHANT SERVICES. ASTRA EMV Review/Best.
2016 FRAUD.
EMV.
Payment Card Industry (PCI) Rules and Standards
Making card acceptance work for you
PCI-DSS Security Awareness
CONFERENCE OF WESTERN ATTORNEYS GENERAL
EMV & Parking – 6 Months On
Breaches by Merchant Type
Making card acceptance work for you
PCI DSS Erin Carrick.
Chip & Pin and Apple Pay: Vulnerabilities of the Changing Payment Systems Jay Isaacson.
New Jersey Gasoline C-Store Automotive Association
Presented by: Jeff Soukup
Payment Card Industry Data Security Standards (PCI-DSS) Training
Presentation transcript:

WHAT NEW, WHAT NEXT IN PAYMENT PROCESSING

EMV

WHAT IS EMV? 3  An acronym created by Europay ®, MasterCard ® and Visa ®  The global standard for the implementation of chip cards for the purpose of facilitating a more secure electronic payment transaction  A security framework that defines the payment interaction at the physical, electrical, data and application levels between chip cards and payment devices EMV is also known as “chip and PIN” in the U.K.; domestically, EMV may be implemented as chip and PIN, chip and signature, or other variations.

EMV – A NEW WAY OF DOING BUSINESS 4  The primary intent of EMV is increased security to reduce counterfeit fraud.  To add an extra layer of security, we can also recommend solutions wherein cardholders never need to relinquish possession of their cards. Note: ProcessNow ® is not intended for restaurant environments.

SECURE CHIP CARD TECHNOLOGY 5 Smart Cards Can Be: “Dual Interface” “Contact” “Contactless” EMV-enabled cards — also known as chip cards or smart cards — have an embedded secure microprocessor chip that stores cardholder data and creates a unique value to make each processing transaction unique. This is known as dynamic authentication.

WHAT EMV WILL REQUIRE? 6  An upgrade to the systems used by issuers, acquirers and processors for payment processing (largely complete)  An upgrade of the merchant’s point-of-sale (POS) environment, including both hardware and software  A change in the traditional process consumers use to make a purchase edit or debit cards

DATA BREACH

Name Social Security number Driver’s license number Medical records Financial information DATA BREACH DEFINED 8 Data breach is unauthorized access to a merchant’s network that results in stolen sensitive data, including:

● Million Americans’ personal information is compromised annually. ● Financial impact is estimated at more than $55 billion annually, impacting both businesses and consumers. ● 31 percent of data breaches were at organizations with 100 employees or less. ● The average cost of a data breach is $50,000, or about $200 per record compromised. Source: Identity Theft Resource Center, DATA BREACH STATISTICS 9

Data breach is a serious threat to all businesses, so data breach protection is critical for all businesses. DATA BREACH PROTECTION 10

A Data Breach Security Program: DATA BREACH SECURITY PROGRAM 11  Helps merchants meet expenses related to suspected or actual breach of payment card data.  Cost of data breach for small businesses (Level 4) can easily be $25,000 to $50,000 – potentially fatal to your business.

Mandatory Forensics Audit = $8,000 to $20,000 Card Replacement Costs = $3 to $10 per card Compliance Fines = $5,000 to $50,000+ depending on size of business and nature of offense leading to breach Actual fines vary depending on the number of cards exposed. DATA BREACH-RELATED COSTS 12 Additional costs may include:

● Only large retailers are subject to data breaches. ● PCI-compliant merchants cannot be breached. Data breach does not affect business revenue. COMMON DATA BREACH MISCONCEPTIONS 13 Misconceptions lead to false sense of security:

In 2013, more than two-thirds of all security breaches occurred in the United States. Merchants must be proactive and protect themselves from huge financial losses associated with data breach. FRAUDULENT TRANSACTIONS 14 Fraudulent card transactions are on the rise: Source: Experis Manpower Group 2013 Cost of a Data Breach Report

PCI COMPLIANCE

Cardholder Data  cardholder name  account number  service code  expiration date Sensitive Authentication Data  magnetic stripe/chip data  CVV  PINs PCI DSS REQUIREMENTS 16 Businesses that process, store and transmit the following are required to be PCI compliant:

● Data Breach ● PCI Accreditation and Certification ● Terminal Compliance ● IRS Mandates ● Merchant Access Point ● W9 Validation COMPLIANCE101.COM 17

● Data Security Management ● Policies and Procedures ● Network Architecture and Software Design PCI DSS REQUIREMENTS 18 PCI DSS (Payment Card Industry Data Security Standards) establishes requirements for:

MOBILE PAYMENTS  Full Cash Register Solution  Mobile On-The-Go with iPhone and Android  In Store Cloud Based Terminal

APPLE PAY

QUESTIONS James Scott

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.