PCICompliance.info | Security Controls for Ongoing PCI Compliance

EPI is a fully compliant service provider. We are listed on the list of Visa Compliant Service Providers (www.visa.com/cisp) and have engaged in a QSA (Qualified Security Assessor) to audit our firm once per year.

We are committed to the following points of security for your business:

End-to-End Encryption of our Internal Front-end

Secure IP Transactions

Always Maintaining Our Compliance as a PCI Compliant Service Provider

Only Using PABP Compliant Terminal Software and Hardware

Ensuring 100% Merchant Compliance with the PCI DSS Standard (current version 1.2)

What is PCI?
Who has to comply?
What "Merchant Level" am I?
Isn't PCI for e-commerce sites?
What is a "scan"? How often must I scan my system?
What are QSAs or Qualified Security Assessors?
What is the SAQ or Self Assessment Questionnaire?
Aren't I allowed to keep whatever data I want? It's my account!
I only take a few cards per month - do I still need PCI?
I never agreed to be compliant... show me my contract!
I can't afford it right now - Can I wait until I have a bigger company?
My bank hasn't told me anything about compliance.
What if all my answers on the SAQ are "No" or "Yes"?
Compliance is a scam and doesn't exist.
How does Validating My Account get me compliant?
Is EPI PCI Compliant? How do I tell?
I already have a Compliance Certificate!