PCI Compliance

Bleep & PCI Compliance

PCI DSS (Payment Card Industry Data Security Standard) is the credit card associations’ security standard requirements to ensure proper and secure handling of credit card data. This is a set of requirements designed to ensure the safe storage, processing and transmission of payment card data and applies to all businesses handling card data.

Bleep EPOS terminals are semi-integrated with Ingenico card payment devices. This means that Bleep EPOS terminals do not hold any payment data and only the Ingenico PDQ devices hold this data – which is why they require PCI compliance.

Ingenico, as our payment device partner, is a Payment Card Industry Data Security Standard (PCI-DSS) certified organisation.

You can view the Ingenico PCI certificate by clicking here.

The standard was mandated by the five major credit card companies – American Express, JCB, MasterCard, Discover Financial Services and Visa.

All merchants will fall into one of four merchant levels based on transaction volume over a 12-month period. The 4 levels of PCI compliance are as follows:

Level 1: Merchants processing over 6 million card transactions per year.
Level 2: Merchants processing 1 to 6 million transactions per year.
Level 3: Merchants handling 20,000 to 1 million transactions per year.
Level 4: Merchants handling fewer than 20,000 transactions per year.

All PCI related information can be found on the PCI Security Standards Council website.

SecurityMetrics™

To demonstrate our level of commitment, our acquiring partner has engaged SecurityMetrics™, a leading provider and innovator in merchant data security and compliance for businesses worldwide. SecurityMetrics™ can provide Level 4 merchants with secure and innovative Payment Card Industry (PCI) Data Security Standard (DSS) solutions.

Our acquirer, in conjunction with SecurityMetrics™, offers the Level 4 Merchant PCI DSS program to offer merchants the resources needed to achieve and maintain PCI DSS compliance.

For further information or advice on PCI compliance matters specific to your business, you can also contact your acquiring bank or SecurityMetrics™ direct.