Mako invited contributions on the topic from payments solution providers Spire Payments, Payzone, VigiTrust, Phoenix Managed Networks and Service Logistics to help produce the document, believed to be the first of its kind to solicit wide support from a consortium of industry partners. The final paper calls for research and cooperation amongst vendors to make card transactions and consumer data safer in small businesses, which have proven to be under increasing threat from card fraud and data breaches.
The free white paper addresses the following:
• PCI and Partnerships - Issues for SMBs in achieving compliance, evolution of the PCI standards, simplifying compliance and addressing PCI DSS myths.
• Hidden Risks - The opportunity for threats and identifying vulnerabilities, risks in exposing data to noncertified partners, and securing the payment environment.
• A Collaborative Approach – Bringing PCI DSS compliance technology vendors together to close the ‘PCI Loop’ and enable greater compliance by focusing on respective strengths.
• Best Practice Guide - Defining best practice for PCI DSS compliance and investigating room for improvement.
Simplifying the vendor/ merchant relationship - Standardising communication and consolidating costs.
Mako Networks CEO Bill Farmer said: “The vendor community is still very segregated when it comes to issues of compliance. Organisations often work in silos with little collaboration or standardised practice. This needs to change in order to make data and payment security compliance more achievable. The development of more effective fit-for-purpose products and services, with the necessary certification, is one way of ensuring a standard level of practice across the industry. This is something we’re highly committed to, as shown by our continued investment in the PCI community and development of the Mako System.”
Phoenix Managed Networks Managing Director, Alan Stephenson-Brown adds: “Vendors in competing sectors have historically worked and developed solutions in isolation without fully understanding the implications of what they are doing. The payment industry has been particularly guilty of this. As new requirements around security and PCI have been rolled out, no single organisation has yet developed the capability to deliver a complete end-to-end solution. Collaborating and sharing ideas will benefit the industry and support merchants in taking on board the PCI requirements.”
Chris Nation, Commercial Manager Europe at Mako Networks, also comments: “In an absolute ideal PCI world there would be greater acceptance of responsibility amongst technology suppliers, resulting in a single approved list of PCI-certified vendors that retailers could refer to. This transparency would ensure that all outsourced services are fully PCI compliant and retailers are not left vulnerable. It would also give a clear message to the merchant that using a Level 1 certified service provider will provide safe harbour.”
The full White Paper can be downloaded for free at:
About Mako Networks
Mako Networks is a cloud-based network management company, providing services and managed appliances that connect businesses to the Internet and protect them from the threats it contains. Mako Networks helps merchants that process, transmit or store cardholder data to comply with the stringent Payment Card Industry Data Security Standards (PCI DSS) as a certified Level 1 service provider. The company operates from offices in Auckland, New Zealand, London and San Francisco.