PCI Compliance

<body topmargin=0 leftmargin=0 marginheight=0 marginwidth=0> <table cellpadding=0 cellspacing=0 border=0><tr> <td valign="top" colspan=2 height=90 BGCOLOR="#006699" TEXT="#080000" background="13cfd5a3.jpg"> <div> <FONT SIZE="5" COLOR="#000000" FACE="Arial" ><B>HealthCard Systems </B></FONT><B>    </B><B> |     </B><A HREF="index.htm" TARGET="_top" TITLE="HealthCard Systems "><U><B>home</B></U></A></div> <div> <A HREF="id2.htm" TARGET="_top" TITLE="About Us"><U>About Us</U></A>   |   <A HREF="id3.htm" TARGET="_top" TITLE="Products and Services"><U>Products and Services</U></A>   |   <A HREF="id25.htm" TARGET="_top" TITLE="Association Member Benefits"><U>Association Member Benefits</U></A>   |   <A HREF="id40.htm" TARGET="_top" TITLE="Partnerships"><U>Partnerships</U></A>   |   <A HREF="id44.htm" TARGET="_top" TITLE="Industry Insights"><U>Industry Insights</U></A>   |   <A HREF="id26.htm" TARGET="_top" TITLE="Press Releases"><U>Press Releases</U></A>   |   <A HREF="id41.htm" TARGET="_top" TITLE="Career Opportunities"><U>Career Opportunities</U></A>   |   <A HREF="id6.htm" TARGET="_top" TITLE="Contact Us"><U>Contact Us</U></A>   |   <B>PCI Compliance</B></div> <div> </div> </td> </tr><tr> <td valign="top" width=210 BGCOLOR="#FFCC66" TEXT="#080000" background="13dd2b03.jpg"> <bR> <bR> <bR> <bR> <div> <IMG SRC="24568230.gif" border=0 width="104" height="35" ALIGN="BOTTOM" HSPACE="0" VSPACE="0"></div> <bR> <bR> <bR> <div> <IMG SRC="26b623d0.gif" border=0 width="98" height="61" ALIGN="BOTTOM" HSPACE="0" VSPACE="0"></div> </td> <td valign="top" height=390 BGCOLOR="#FFFFFF" TEXT="#080000"> <div> <I>PCI Compliance</I></div> <div> <I><B>A Guide to Reducing Fees</B></I></div> <bR> <DIV ALIGN="LEFT"></DIV> <div> <I><B><U>HealthCard is Here to Help With your PCI Validation</U></B></I></div> <bR> <div> <I><B>HealthCard has partnered with SecurityMetrics, a Visa and MasterCard certified PCI Vendor, to assist our merchants. You can </B></I><FONT SIZE="3" COLOR="#111111" FACE="Arial" ><A HREF="https://www.securitymetrics.com/buywiz.adp?acquirer=228" TARGET="_self" TITLE="https://www.securitymetrics.com/buywiz.a"><U><I><B>click here</B></I></U></A></FONT><I><B> or call 801-724-9600 to enroll and validate your compliance with the Payment Card Industry Data Security Standard (PCI DSS) rules on securely handling and storing cardholder data.....</B></I></div> <bR> <DIV ALIGN="LEFT"></DIV> <div> <A HREF="https://www.securitymetrics.com/buywiz.adp?acquirer=228" TARGET="_blank" TITLE="https://www.securitymetrics.com/buywiz.a"><U><I><B><IMG SRC="266831e0.gif" border=0 width="131" height="30" ALIGN="BOTTOM" HSPACE="0" VSPACE="0"></B></I></U></A></div> <bR> <div> <I><B><U>What is PCI DSS?</U></B></I></div> <bR> <div> <B>When card-holders offer their bankcard at the point of sale, over the Internet, on the phone, or through the mail, they want assurance that their account information is safe. In order to protect your customers' data, Visa and MasterCard, in a cooperative effort, created an industry standard known as Payment Card Industry (PCI) Data Security Standard (DSS). </B></div> <bR> <bR> <div> <I><B><U>Who Must Comply?</U></B></I></div> <bR> <div> <B>PCI DSS Compliance is required of all merchants and service providers that store, process, or transmit cardholder data and applies to all payment channels, including retail (brick-and-mortar), mail/telephone order, and e-commerce. </B></div> <bR> <div> <B>All merchants will fall into one of the four merchant levels based on Visa transaction volume over a 12-month period. Transaction volume is based on the aggregate number of Visa transactions (inclusive of credit, debit and prepaid) from a merchant Doing Business As ("DBA"). In cases where a merchant corporation has more than one DBA, Visa acquirers must consider the aggregate volume of transactions stored, processed or transmitted by the corporate entity to determine the validation level. If data is not aggregated, such that the corporate entity does not store, process or transmit cardholder data on behalf of multiple DBAs, acquirers will continue to consider the DBA’s individual transaction volume to determine the validation level. </B></div> <bR> <div> <B>In addition to adhering to the PCI DSS, compliance validation is required for Level 1, Level 2, and Level 3 merchants, and may be required for Level 4 merchants. The PCI DSS requires that all merchants with externally-facing IP addresses perform quarterly, external network scans to achieve compliance. Acquirers may require submission of the quarterly scan reports and/or questionnaires by level 4 merchants. Any merchant that has suffered a breach that resulted in an account data compromise may be escalated to a higher validation level. </B></div> <bR> <bR> <DIV ALIGN="LEFT"></DIV> <div> <B><IMG SRC="26dcccf0.png" border=0 width="460" height="463" ALT="Bitmap Image" ALIGN="BOTTOM" HSPACE="0" VSPACE="0"></B></div> <bR> <bR> <bR> <div> <I><B><U>How Do I Comply?</U></B></I></div> <bR> <div> <B>The PCI DSS offers a single approach to safeguarding sensitive data for all card brands. Other card companies operating in the U.S. have also endorsed the PCI DSS within their respective programs. Using the PCI DSS as its framework, Visa's compliance programs provides the tools and measurements needed to protect against cardholder data exposure and compromise. The PCI DSS consists of twelve basic requirements categorized as follows: </B></div> <bR> <bR> <DIV ALIGN="LEFT"></DIV> <div> <B><IMG SRC="26eccab0.png" border=0 width="460" height="427" ALT="Bitmap Image" ALIGN="BOTTOM" HSPACE="0" VSPACE="0"></B></div> <bR> <bR> <bR> <div> Call, fax or e-mail us at:</div> <DIV ALIGN="LEFT"></DIV> <div> HealthCard Processing Systems, LLC</div> <div> Sherbrooke Office Center II</div> <div> 201 West Passaic Street, Suite 304</div> <div> Rochelle Park, NJ  07662</div> <div> (866) 464-4555</div> <div> Fax (201) 845-5006</div> <div> <A HREF="mailto:PCICompliance@nationalcard.net" TARGET="_top" TITLE="mailto:PCICompliance@nationalcard.net"><U>PCICompliance@HealthCardSystems.net</U></A></div> <bR> </td> </tr></table></body>