For many merchants, achieving Payment Card Industry (PCI) Data Security Standard (DSS) compliance remains difficult at best. They spend most of their waking hours concentrating on the bottom line, working to make their businesses thrive. The time, money and energy required to address PCI DSS issues can overwhelm merchants and pull them away from their core functions.
Also, the PCI DSS' 12 requirements are changing and growing in complexity as products and services in the payments industry evolve. Failure to comply with the requirements can result in fines, audits and additional in-house administrative and system management costs for merchants and their acquirers.
Busy with many other aspects of merchant acquirers, many ISOs and merchant level salespeople (MLSs) seek partners willing to handle merchant PCI compliance full time.
They are turning to experts, such as GreenSoft Solutions Inc., to help merchants who have neither the wherewithal nor the desire to manage these matters in-house.
The demands of the PCI DSS have caused much anxiety for merchants who are afraid not only of becoming victims of cardholder data security breaches, but also of being fined for failing to meet security requirements. GSI hopes to ease those fears.
GSI specializes in managed hosting for companies with e-commerce sites that require a high level of security. "With regard to the payments industry, GSI has developed a dedicated hosting environment specifically for those clients that require their hosted applications to be located in a PCI DSS-compliant environment," said Terry Madden, Vice President – Strategic Markets for GSI.
"Many hosting providers simply provide physical security and leave the system management up to you," Madden said. GSI performs both tasks, allowing merchants to concentrate on their core business practices rather than monitor information technology (IT) environments.
Madden added that small and large companies consider GSI a partner in helping them achieve and maintain PCI compliance.
GSI strives to understand its clients' business operations by gathering as much detail as possible.
"We believe that the more we know about our customer and what is critical to their business, the better we can support them," Madden said.
In 1996, when Internet commerce was in its infancy, GSI opened its doors as an application development organization. The company developed payment applications and helped e-commerce Web sites get up and running. "We've always been in hosting," Madden said.
Most of GSI's customers were large benefit-management companies, including those administering medical plans. As the use of credit and debit cards increased for doctor visits, GSI explored a new role.
"The card organizations demanded that we follow credit card compliances," Madden said. "We saw a hole in the market for high-security compliance."
GSI's philosophy is simple – get PCI DSS compliance done right. Accordingly, GSI takes a flexible business approach to optimize a plan to fit any client's needs and concentrate on client-centered solutions, Madden said.
GSI has built its credibility by receiving a number of industry certifications, and gaining authorization to support direct connectivity into the four major card brand networks.
Madden noted that GSI was the first hosting facility in the United States to be recognized as meeting Visa Inc.'s Cardholder Information Security Program security standards for managed hosting and co-location hosting.
GSI does not sell its products and services through the ISO and MLS channel. Rather, it works in partnership with ISOs and MLSs to help merchants and processors achieve and preserve PCI compliance. It does not compete with ISOs.
"We don't displace their business," Madden said. "We are their IT department."
Many ISOs and MLSs have their own payment applications, which must be PCI-compliant.
However, they are also busy assisting their merchant customers with all aspects of card processing services, including PCI compliance.
GSI has 72 associates – 60 are technology professionals – who are ready to handle PCI DSS issues from three separate data centers in Kansas City, Mo. GSI monitors systems and software 24/7 and provides detailed and complete analysis of that information.
"We are ensuring that they pass audits and are compliant," Madden said. "Most hosting companies aren't going to say that." Madden also believes initial compliance for merchants can bring complacency, and the need for vigilance in maintaining PCI DSS standards is more critical now than ever before. "Our service ensures them [ISOs and merchants] that we are living compliance every day."
Partnerships with GSI can also eliminate the need for ISOs to replace existing payment application hardware or software. "If a processor already has their own application, we can work with them and make sure what they have is compliant," Madden said.
In addition, customers can consult GSI before installing new computer applications or making changes to e-commerce sites. GSI can advise businesses how to adjust operations for new business processes and demands and help them update or improve existing systems. "Some want to refresh, or they are getting something bigger and better," Madden said.
PCI compliance is a burden for companies – with or without IT staffs. Budgets are often stretched to capacity. They must meet the requirements or risk hefty fines or even the demise of their businesses.
GSI takes on a large portion of its clients' PCI responsibilities and relishes its ability to alleviate the myriad problems that can arise from noncompliance.
Assisting companies with PCI compliance and the management associated with hosting and maintaining e-commerce sites is all that GSI focuses on.
For payment professionals and merchants consumed by the card processing challenge, GSI is designed to keep PCI-induced headaches at bay.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.
ISO/MLS contact:
Terry Madden
Vice President – Strategic Markets
Phone: 816-222-1261
E-mail: tmadden@gsihosting.com
Company address:
10828 NW AirWorld Drive
Kansas City, MO 64153
Phone: 888-952-4888
Fax: 816-880-9608
Web site: www.gsihosting.com
ISO/MLS benefits:
Company Profile originally appeared in
The Green Sheet Issue 080801
231102 - Merchant Advisory Services Inc
231002 - Wellesley Hills Financial
181201 - Network Merchants LLC
180902 - MainStream Merchant Services Inc.
180801 - Century Business Solutions
180502 - Priority Payment Systems Northeast
180501 - Merchant e-Solutions Inc.
180301 - Wirecard North America
171202 - Secure Cryptopayments
171002 - National Benefit Programs LLC
170902 - Frates Insurance & Risk Management
170901 - DCS Holdings Group LLC
170802 - Apogee Payment Systems LLC
170702 - Active Software & Hardware Systems
170701 - Veratad Technologies LLC
170502 - Frontline Processing Corp.
170501 - Platinum Choice Bancard LLC
161202 - International Bancard Corp.
161201 - CSR Professional Services Inc
161102 - Digitzs Solutions Inc.
161101 - Residual Sheriff LLC.
160801 - DigiPay: Solutions Inc
160702 - CreditCardProcessing.com
151202 - Benseron Information Technologies Inc.
151201 - CardWare International Inc
151101 - Lion Capital Group LLC
150801 - Topcreditcardprocessors.com
150702 - Vision Payment Solutions LLC
150601 - Conformance Technologies
150502 - Global Processing Systems
150402 - Mercantile Processing Inc.
150401 - Field Guide Enterprises
150302 - Signature Card Services
150301 - Premier Payment Systems Inc.
150201 - Humboldt Merchant Services
141102 - National Merchants Association
141001 - Instant Credit Manager
140902 - Merchant Cash and Capital LLC
140701 - National Transaction Corporation (NTC)
140601 - Total Merchant Services
140501 - Nationwide Payment Solutions
140501 - BPC Banking Technologies
140301 - Meritus Payment Solutions
131202 - First American Payment Systems L.P.
131102 - Evo Payments International LLC
131001 - Live Reps Call Center
130901 - Regal Payment Systems LLC
130901 - The Merchant Solutions
130802 - North American Bancard LLC
130801 - Payment Logistics LLC
130702 - Plug n Pay Technologies Inc.
130601 - U.S. Merchant Systems LLC
130402 - National Processing Co.
130202 - Charge Card Systems Inc.
130202 - Layered Technologies Inc.
121202 - American Microloan LLC
121102 - Keep in Touch Systems Inc.
121102 - Merchants Choice Payment Solutions
121002 - Washington Bancard Merchant Services LLC
120902 - Central Payment Co. LLC
120802 - Royal Merchant Holdings LLC
120801 - National Benefit Programs LLC
120602 - Cardinal Commerce Corp.
120601 - Veritrans Merchant Services LLC
120502 - ExecuTech Lease Group
120502 - The Small Business Authority
120402 - Chargeback Guardian Inc.
120401 - Electronic Payment Exchange
120301 - Complete Merchant Solutions LLC
120201 - CSR - Compliance Solutions and Resources
111002 - Lead Source Call Center
111001 - First Annapolis Consulting Inc.
110902 - Point of Sale System Services Inc.
110901 - Sage Payment Solutions
110801 - Century Payments Inc.
110702 - Creative Vision Studio LLC
110702 - Network Merchants Inc.
110701 - Capital Access Network Inc.
110602 - eProcessing Network LLC
110602 - Moneris Solutions Inc.
110502 - Paragon Application Systems Inc.
110401 - Merchant Implementation Services
101202 - CheckAlt Payment Solutions
101102 - Impact Payments Recruiting
101101 - Global Electronic Technology Inc.
101002 - TriSource Solutions LLC
100802 - Federated Payment Systems LLC
100801 - Voltage Security Inc.
100601 - NETSURION (formerly Vendor Safe Technologies)
100502 - Transaction Network Services Inc.
100402 - Secure Payment Systems Inc.
100401 - Elite Merchant Solutions
100302 - Retail Decisions Inc.
091201 - Performance Training Systems Bankcard Boot Camp
091101 - Merchant e-Solutions Inc.
091002 - Whitehall Capital Advisors LLC
090901 - CoCard Marketing Group LLC
090801 - First National Merchant Solutions
090701 - checXchange Money Transfer Systems Inc.
090601 - Sterling Payment Technologies
090502 - Infinity Payment Systems
090501 - Merchant Cash and Capital
090401 - UseMyBank Services Inc.
090401 - Data Delivery Services Inc.
090302 - Velocity Merchant Services
090302 - Metro Merchant Services
090301 - Smart Transaction Systems Inc.
090301 - DCC Merchant Services USA LLC
090202 - TransFirst Holdings Inc.
081202 - Affirmative Technologies Inc.
081201 - On-line Strategies Inc.
081101 - Vision Payment Solutions LLC
081002 - Veratad Technologies LLC
081001 - International Merchant Solutions LLC
080801 - GreenSoft Solutions Inc.
080702 - Smart Circle International
080601 - International Bancard Corp.
080502 - DRG Telemarketing Inc.
080501 - BCC Merchant Solutions
080402 - U.S. Merchant Systems
080401 - Greystone Business Resources Corp.
080302 - Transmedia Payment Services Ltd.
071202 - Barclay Square Leasing Inc.
071102 - FirstView Financial LLC
071001 - Sage Payment Solutions
070902 - YourTownMall Business
070901 - Nxgen Payment Services
070802 - All card Processing-AAMonte-USA
070801 - Money Movers of America Inc.
070602 - Central Point Resources Inc.
070601 - Positive Feedback Software LLC
070502 - Premier Payment Systems
070501 - Amacai Information Corp.