The Changing Landscape of Card Acceptance

Similar documents
EMV and Educational Institutions:

EMV Chip Cards. Table of Contents GENERAL BACKGROUND GENERAL FAQ FREQUENTLY ASKED QUESTIONS GENERAL BACKGROUND...1 GENERAL FAQ MERCHANT FAQ...

EMV, PCI, Tokenization, Encryption What You Should Know for Presented by: The Bryan Cave Payments Team

Is Your Organization Ready for the EMV Challenge?

EMV Adoption in the U.S.

Merchant Services What You Need to Know. Agenda 6/5/2017. Overview of Merchant Services. EMV, Tokenization/Encryption, and PCI (Oh My!

Top 5 Facts Merchants Need To Know About EMV

Technology Developments in Card-Based Payments WACHA Payments 2013

The Shared Electronic Banking Services Company (KNET) Knet securing E-payment for EGOV

EMV & Fraud POS Fraud Mitigation Tips for Merchants First Data Corporation. All Rights Reserved.

EMV is coming. Here s how to stay ahead of the trend. Presented by CO-OP Financial Services

EMV: Frequently Asked Questions for Merchants

U.S. Bank. U.S. Bank Chip Card FAQs for Program Administrators. In this guide you will fnd: Explaining Chip Card Technology (EMV)

Securing Card Payments Challenges & Opportunities. Julie Hanson Senior Vice President, Card & Payment Products ICBA Bancard & TCM Bank, NA

The Future of Payment Security in Canada

PAYMENT CARD INDUSTRY DATA SECURITY STANDARD SELF-ASSESSMENT QUESTIONNAIRE (SAQ) A GUIDE

EMV: Facts at a Glance

Tokenization April Tokenization. Gregory H. Soule, CPA, CISA, CISSP, CFE Senior Manager. Andrews Hooper Pavlik PLC

EMV Migration. What You Need to Know about the Technology, the Security Protection it Provides, and When to Implement

EMV is coming. But it s ever changing.

Payment Card Industry Data Security Standard Self-Assessment Questionnaire B Guide

Verifone MX 915/925 Payment Devices. with KWI 6.x POS Registers: What s New?

Payment Digitalization and the University Smart Card

Payments - EMV Review. EMV Functionality Inside OpenOne

Pinless Transaction Clarifications

FTFS. Fault Tolerant Financial Systems

PCI Requirements Office of Business and Finance Issued July 2015

E M V O V E R V I E W. July 2014

PCI BLOG. P2PE, EMV, Tokenization, Oh My!

3.17 Payment Card Industry (PCI) Compliance Policy

Point-of-Sale Terminals

Understanding the 2015 U.S. Fraud Liability Shifts

EMV Just the Facts. Ozarks Association of Government Accountants

I N T E R A C. The Faster, More Convenient Way. Small Value Purchases

CREDIT CARD MERCHANT PROCEDURES MANUAL. Effective Date: 04/29/2016

JTC Resource Bulletin. EMV and Credit Card Liability: What Courts Need to Know

PCI Requirements Office of Business and Finance Issued July 2015

Virtual Terminal User Guide

MOBILE CHECKOUT SOLUTION

Mobile Payment Platforms For The Artist

Payment Acceptance Solutions

Cards on the table! Bernd Filsinger Payment Technology Services Lead Client Support Services, Europe region

Investigating the myths and realities of contactless payment

Visa Digital Solutions. Rocio Beckham Community Issuers

Ensuring the Safety & Security of Payments. Faster Payments Symposium August 4, 2015

Online Payment Services

The Bank of Elk River: Digital Wallet Terms and Conditions

PIN Issuance & Management

Electronic Payments: PayPal vs. Credit Cards

Additional Terms & Conditions for Use of Apple Pay to Supplement Your Interactive Brokers Debit Mastercard Cardholder Agreement

esocket POS Integrated POS solution Knet

Card Payments Roadmap in the United States: How Will EMV Impact the Future Payments Infrastructure?

No need to find cash and no hanging around at the till for change or receipts unless you need one.

ADDENDUM NO. 3 REQUEST FOR PROPOSAL NO. R BANKING AND MERCHANT SERVICES FOR HIGHER EDUCATION

Seeds of Change in Debit

ATM Webinar Questions and Answers May, 2014

Visa Minimum U.S. Online Only Terminal Configuration

EMV IN THE U.S. HOW FAR HAVE WE COME AND WHERE ARE WE GOING? Andy Brown

A Conversation with Visa on Consumer Debit Growth Connie Davis FIS Global Retail Payments Greg Borchardt Visa Consumer Debit Products

A Dynamic Payment Platform For Your Campus

Quick Guide. Token Service Provider

PayPass M/Chip Requirements. 3 July 2013

EMV: The Journey Begins October 1st

Apple Pay Could Finally Ignite the Tap-and-Pay Revolution

Security enhancement on HSBC India Debit Card

First Data EFTPOS. User Guide. 8006L2-3CR Integrated PIN Pad

ANZ EFTPOS card and ANZ Visa Debit card CONDITIONS OF USE

COLUMBIA UNIVERSITY CREDIT CARD ACCEPTANCE AND PROCESSING POLICY

What is Stripe? Is Stripe secure? PCI compliant?

Best Practices for Securing E-commerce

Charlene Robertson, MBA. UAA Accounting Services Manager

Using Pinterest Buyable Pins with Demandware: Frequently Asked Questions

Topics. First Data and STAR Network overview. Competitive advantage. Fraud in emerging payments. Fraud innovation what s coming

Security & Compliance Trends in Innovative Electronic Payments

Smart Cards and EMV Adoption in China

VISO BUSINESS PLAN. Token sale level Funds raised. Technologies launched. Share of Georgia s cash-desk equipment market

KNOW YOUR RUPAY DEBIT CARD

Instant issuance in retail breaks new ground for banks

International Processing for the Financial Industry

EMV : One year later. Merchants take steps to adapt and address challenges in the year following the shift to EMV technology at the point of sale

When the hard-to-reach become your preferred customers. Finc / the offering which addresses financial inclusion challenges

Contactless Toolkit for Acquirers

Protecting Your Future

Horizontal Integration in the Payments Industry

eid Meets Credit Cards and Biometrics: The Next Stage of Convergence Adam Ross Sales Manager eid Solutions EMEA, cv cryptovision GmbH

First Data (FD) Mobile Pay FAQs ISO Channel

AUTHORIZE.NET SAQ ELIGIBILITY WHITE PAPER NICK TRENC CISSP, CISA, QSA, PA- QSA. North America Europe coalfire.

The e-commerce solution. Your key to successful online business

UP BILL PAYMENT SOLUTIONS

Quick Guide. Token Service Provider

Tokenization: What, Why and How

Straight Answers on PCI and EMV

Understanding the SAQs for PCI DSS v3.0

Maximize the use of your HSM 8000

A Guide to. US EMV Migration

EMV: Coming Soon to a Card Near You

Guide to Contactless Cards

Helping merchants automate testing practices.

PANDORA S DIGITAL BOX: DIGITAL WALLETS AND THE HONOR ALL DEVICES RULE ADAM J. LEVITIN EXECUTIVE SUMMARY

Strategy to Accelerate Migration to e-payments in Malaysia

Transcription:

The Changing Landscape of Card Acceptance Troy Byram Vice-President Sr. E-Receivables Consultant February 6, 2015 Agenda EMV (Chip and Pin) PCI Compliance and Data Security New Regulations for Municipalities New Payment Technology Trends 2 EMV (Chip and PIN) 3 1

Retail payments continue to shift to electronic means Number of Transactions by Payment Type 2000-2012 Billions 50 45 40 35 30 25 20 15 10 5 0 Debit cards Credit cards Checks ATM Withdrawals EBT/Prepaid 2000 2003 2006 2009 2012 Payments landscape has seen dramatic changes in the past decade Proxy measures for cash (e.g., ATM transactions) are largely stable How does cash fit into this evolving landscape? 4 What is EMV and how does it work? EMV is a global payment standard for chip-based payments created by Europay, MasterCard, Visa EMV payment cards improve security over magnetic strip technology through an embedded computer chip Validates the card is legitimate Cardholder verification (PIN) authenticates the cardholder Authentication can be "chip & PIN or "chip & signature EMV standards support existing and emerging payment technologies Contact (insert), Contactless (tap) or Dual (both) Mobile Phones or Fobs (contactless) 5 Why Should Merchants Care? How does EMV protect me? EMV cannot prevent information breaches like the one Target experienced last year. What EMV can control is what can be done with the breached data. EMV technology provides dynamic (ever changing) data fields in the transaction This technology prevents thieves from using copied card data onto a fraudulent chip card. 6 2

Timeline and Impact October 2015 Target date for retailers to be able to accept EMV transactions Requires new equipment at point of sale Requires certification of software solutions Impact Liability shift for merchants without EMV capabilities In the event of fraudulent transaction, the merchant may assume responsibility and financial liability for counterfeit transactions 7 PCI Compliance and Data Security 8 What is PCI-DSS? Payment Card Industry Data Security Standards Industry tools and measurements to ensure the safe handling of sensitive information Applies to ALL merchants and third party service providers 9 3

When does PCI & PA-DSS apply? Processing Storing Transmitting 10 66% Breaches identified by external parties* 64% Breaches that go undetected for months* 63% Data breaches that involved a third Party responsible for system support* *Verizon 2013 Data Breach investigations report 11 Can your business survive a data breach or privacy loss The number of data breaches, as well as the costs of complying with customer notification requirements and restoring compromised systems, continues to increase steadily. Even companies with strong security and privacy controls are not immune to the actual theft or damage of data by external or even internal parties. The average cost of a data breach in the U.S. was $5.4 million in 2012 Estimated cost of the Target data breach tops $200 million The average cost per compromised record in 2012 reached $188 Direct Cost of $23 includes discovery and forensics Victim Cost of $38 includes notification, call center and identity monitoring Indirect costs of $127 legal fees, regulatory fines and reputational damage Lost Laptops account for 35% of data breaches 12 4

PCI DSS validation requirements Compliance Classification Level Annual submission of compliant PCI DSS Report on Compliance (ROC) Annual submission of compliant Self Assessment Questionnaire (SAQ) Quarterly Network Scan Level 1 >6 MM annual transactions (Any payment network) Level 2* 1 MM to 6 MM annual transactions (Any payment network) Merchant can do either ROC or SAQ Level 3 20K to 1 MM annual transactions (Any payment network) ecommerce only Level 4 (recommended) < 20K e-commerce < 1MM annual transactions *Level 2 merchant Self Assessment Questionnaire (SAQ) must be completed by an ISA (Internal Security Assessor) 13 PCI: Validation versus compliance Validation Compliance Strategy (BAU) Data security Reactive Monitoring security controls Proactive 14 Protective measures: Evolving requirements Monitor changesmonitor Monitor activities changes Test protection measures Rigorous penetration testing Work with Staff responsibilities your service Work with providers your service providers Leverage encryption and tokenization Test protection measures Educate your Rigorous Goal is to protect employees your infrastructure penetration testing 15 5

New Regulations for Municipalities 16 Convenience Fees Flat fee charged on a non face-to-face transaction only when the payment method is a true convenience for the customer. -In an alternative channel outside the customary payments channel Charging as a percentage of the transaction amount is not permitted No registration is required Requires disclosure to card holder Applies to any card payment - Visa requires the fee to be applied to all payment types in that channel, such as ACH Example: A $5 fee to pay a power bill on-line 17 Government and Higher Education Allows participating merchant to assess fees on approved transaction types - Visa refers to this as a service fee - MasterCard refers to this as a convenience fee Applies to Debit and Credit transactions May be variable or tiered Requires - Registration with the payment networks - Disclosure of fees to the cardholder - Card products must be accepted in all channels where payments are accepted Example: A 2% fee charged for tuition payment via credit or debit card 18 6

MCC Codes-Visa Government 9311-Tax payments 9222- Fines 9211-Court costs 9399-Misc Gov t Services Tuition Payments 8220-College Tuition 8244-Business Schools 8249-Trade Schools 19 MCC Codes-MasterCard Government - 9311-Tax payments - 9222- Fines - 9211-Court costs - 9399-Misc Gov t Services Higher Education Payments - 8211-Schools - 8220-Colleges, Universities - 8249-Trade Schools 20 Surcharge Fee added to the cost of a purchase when a customer uses a payment card Percentage based fee for credit, not debit cards Result of the Interchange settlement with Visa and MasterCard -Does not apply to Discover and American Express -Cannot be imposed by merchants who accept all card brands Example: A wholesaler charges a 2% surcharge for payments via credit card. Debit/ACH/Check have no fee Outlawed by many States and growing 21 7

New Payment Technology Trends 22 Mobile Payments Utilizing smart devices Phones, tablets, laptops Requires card swipe accessory Benefits Mobility in retail environment Capture cards in the field Card present Interchange Real-time authorization 23 Advanced Gateway Solutions Omni Channel solutions Internet: Hosted and API Virtual Terminal IVR Retail Mobile Additional Capabilities Data storage, recurring payments Multiple payment types accepted International currencies Advanced reporting System integration Advanced fraud tools 24 8

Apple Pay What is it? Payment method using encrypted data stored on your iphone or Apple Watch Uses a dynamic, one-time security code Mobile application Hold the iphone near payment capture hardware (NFC) Uses fingerprint for authentication Removes need for credit card and PIN Card Not Present application Use in apps Virtual button and finger print authentication 25 Questions? Thank you for your time. 26 9

2024 © businessdocbox.com Privacy Policy | Terms of Service | Feedback