In August we sent you an email to let you know that we had partnered with SecurityMetrics to provide you with access to an online Self-Assessment Questionnaire and Quarterly Scans to help you be compliant with the Payment Card Industry Data Security Standards (PCI DSS).
You may have completed these tasks with your payment processing provider. You may have forgotten this was a requirement of all merchants who accept credit and debit cards and have not completed this important task. Either way, SecurityMetrics offers an inexpensive and simple alternative to help you meet this requirement.
As we’ve helped answer questions that have come in over the past few weeks, a few have been quite common. We are sending a sequence of four (4) emails to address these common questions for everyone.
- Question 2
- How do I answer the SAQ?
- If you have never completed a Self-Assessment Questionnaire (SAQ), you may feel a little overwhelmed by the questions on the form. Keep in mind that the Bookstore Manager system does not store any cardholder information on your computer. In fact, with the EMV feature, cardholder information does not pass through the POS at all. You can confidently answer in the affirmative in this section of the SAQ.
The areas of the questionnaire that will need your special attention are in regards to how you handle card information that is recorded on paper, typed into a non-BSM program (such as Word, Excel, or Outlook), or is otherwise stored on a computer or file drawer. In these circumstances, you will need the employ the necessary protections to secure the cardholder’s information or destroy the cardholder data after valid use.
To enroll visit www.securitymetrics.com/pcidss/bsmgr
Your BSMGR Sales Team
firstname.lastname@example.org | (800) 997-6724 (option 1)
P.S. If you missed the first question, you can read it and the answer here.