What is PCI, and why does it matter to your restaurant? Otherwise known as PCI DSS, which stands for payment card industry data security standard, this standard was put into place to protect the information of your credit card holding guests. According to PCIComplianceguide.org, “The Payment Card Industry Data Security Standard is a set of requirements designed to ensure that ALL companies that process, store or transmit credit card information maintain a secure environment.”
This standard, launched in 2006, was put into place as the credit card industry began evolving at a rapid pace. And though credit card processing is integral to any restaurant, maintaining customer security is even more important. If you’re operating with a point of sale system, consider what makes your POS compliant and any changes you may have to make.
The first step in ensuring that your point of sale system is PCI compliant is to install a firewall which is used to protect the incoming information. This keeps the information safe as you process credit cards, as well as after the information is stored.
When you do this you want to be sure the software is customized to your business so hackers are less likely to break in. Change passwords and create your custom protection system based on specific security needs.
Protect Cardholder Data
All in all, this standard is put in place to protect the card holder’s data. However, this isn’t as simple as installing your firewall; you’ll need to take it one step further. RetailSystems.com suggests, “Encrypt transmission of cardholder data across open, public networks and the internet.” In addition, be sure only the first six or last 4 numbers of the credit card are displayed on the receipt.
Allow minimal access
Once the data is within your system, any number of people can reach it; specifically employees. Because of this, you want to restrict access to this part of the software to just those people who need it. Consider granting special access to managers, owners, partners, etc. Give them specific access numbers so you can see if an employee has breached the system with someone else’s ID.
The final requirement for a PCI compliant POS is to monitor your security and information access at all times. There are a number of aspects for you to monitor.
As a fully functioning restaurant, it’s imperative that your POS is PCI compliant. If not, and card holder data is jeopardized, you could get fined anywhere from $5,000 to $100,000. This fine is given to the bank you operate through and will inevitably be passed down to you. Not mention, it is also safe to assume your relationship with that bank will end. Don’t take the risk – protect yourself and your customers by staying PCI compliant.
About the Author
Jessica Sanders is an avid small business writer. As the marketing copyeditor of Resource Nation, she touches on a range of topics including information on accepting credit cards and small business checking accounts.
... the shift to service providers may just be the factor that decides whether they survive or not as the industry shifts. Other Articles of Interest: Groupon Enters Restaurant POS Market With ...
... for its recently launched Breadcrumb® POS system, an easy-to-use, powerful and affordable solution that runs on iPads for restaurants, bars and cafes. Epson’s most popular food service receipt printers, ...
... The fashion industry has taken quickly to Pinterest and the restaurant industry is following. Essentially, Pinterest is a virtual, visual bulletin board where users can “pin” items of interest found ...