GS Logo
The Green Sheet, Inc

Please Log in

A Thing
View Archives

View PDF of this issue

Care to Share?

Table of Contents

Lead Story

Awaken your ATM ambitions


Industry Update A windfall for wanderlust

CyberSource woos and wins Authorize.Net

Yanks chalk up another fine NEAA show

Discover flying solo

The ATM story in numbers


Bill Beattie

Contactless and the ATM?

Tracy Kitten


Building m-commerce momentum

Paul Rasori

It's cool to build karma

Ken Musante
Humboldt Merchant Services


Street SmartsSM:
Ruminations on ISO registration

Dee Karawadra
Impact PaySystem

Sell something every merchant craves

Marcelo Paladini
Cynergy Data

PCI compliance: A brand builder, not a burden

J. David Siembieda
CrossCheck Inc.

Vigilant compliance revisited

David H. Press
Integrity Bankcard Consultants Inc.

Rake it in: Resell basic security services

Michael Petitti

New Products

Souped-up, secure e-billing

Company: MODASolutions
Product: eBillme

Software steroid for POS terminals

Company: Hypercom Corp.
Product: SmartPayments Client


Are your ears burning?



Resource Guide


A Bigger Thing

The Green Sheet Online Edition

July 09, 2007  •  Issue 07:07:01

previous next

Vigilant compliance revisited

By David H. Press

I've often addressed topics that many of you, as ISOs and merchant level salespeople (MLSs), might rather avoid. My articles have dealt with behind-the-scenes subjects that may restrict your activities or address what may seem like onerous requirements.

Here is a review of some important back-office and card Association issues:

Forbidden transactions

In light of recent Federal Trade Commission and card Association actions, avoid processing illegal transactions. Both Visa U.S.A. and MasterCard Worldwide rules prohibit such processing.

And they enforce their rules. They have levied fines for processing gambling, prescription drug, pornography and cigarette transactions over the Internet.

PCI compliance

Work with your customers on Payment Card Industry (PCI) Data Security Standard compliance. Also, ensure that your own activities are in compliance with PCI and card Association rules.

Since the jolt of the CardSystems Solutions Inc. and The TJX Companies Inc. fiascos, all card Association-approved security assessor companies are busy. The compliance process takes time. But it is required of all merchants and any entity that stores, transmits or processes cardholder data.

Validation of compliance is part of that process. And requirements vary based on factors such as transaction volume. Get up to speed on what you and your merchants need to do.

Offshore scrutiny

U.S.-based merchants who sell products primarily to Americans and process transactions offshore are on the card Associations' radar. Expect continued, heightened scrutiny in this area.

Chargeback woes

If some of your merchants have high chargeback levels or are in business sectors that sustain high chargeback levels, pay close attention to them.

Card Associations are increasing pressure on such merchants, as well as those who sell products with restrictive terms and conditions and those who use "free gift sites" to obtain customer referrals.

The latter tend to have a high volume of returns because customers don't really want their products: They just want the "free" plasma TV, computer or iPod offered for signing up (or referring others) for specified products. Customers tend to cancel when they get their free product or believe they were scammed and will never receive the goods.

Underwriting tips

Be diligent about underwriting. The card Associations require that acquirers _ prior to entering into a merchant agreement _ determine that a prospective merchant is financially responsible and will abide by all regulations and applicable law.

Before entering into a merchant agreement, acquirers must:

FTC frights

The FTC watches over ISOs, MLSs and many types of merchants. Generally, the businesses the FTC has sued are the kinds of companies you should avoid.

To prevent FTC scrutiny, never lie to merchants or assist others in making misrepresentations of material facts. Specifically, this means:

Merchant education

Merchant education is a good practice that will help you retain customers. The card Associations also require that acquirers institute ongoing fraud prevention measures. These include visits to merchants, distribution of helpful literature and participation in merchant seminars.

The card Associations have made major strides in providing online educational tools (including relevant sections of their rules and regulations). Use them.

A fond farewell

For more details on these issues, my prior articles can be found in the GS Online archives. They are also available at

I have enjoyed interacting with you, the readers of The Green Sheet, regarding what you can do to protect your business interests. Now, after four years and some 60 articles, I'm passing the torch of regular column writing to newer writers. However, I will continue to submit articles to The Green Sheet on occasion.

Best wishes to all of you.

David H. Press is Principal and President of Integrity Bankcard Consultants Inc. Call him at 630-637-4010, e-mail or visit

Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.

previous next

Spotlight Innovators:

North American Bancard | Simpay | USAePay | Impact Paysystems | Board Studios