PracticeQ Payments PCI Compliance

To process payments through PracticeQ Payments, your practice must be PCI compliant. PracticeQ is happy to help you as you complete the compliance process.

Resources

What is PCI Compliance?

The primary purpose of Payment Card Industry (PCI) Data Security Standards (DSS) is to ensure the secure handling and protection of customer credit card data, reducing the risk of data breaches and fraud.

Key Objectives of PCI DSS

  • Protecting Cardholder Data
  • Maintaining a Secure Network Environment
  • Implementing Access Controls
  • Regular Monitoring and Testing
  • Information Security Policies


Want to learn more about PCI compliance?
PCI DSS website

Why is PCI Compliance Important?

PCI compliance is required by the card networks (Mastercard, Visa, etc.) to securely accept credit cards. PCI compliance affects anyone who transmits, stores, and makes use of cardholder data including merchants, service providers, financial institutions, and POS vendors.

As part of the PCI Toolkit, we include breach insurance, an additional layer of protection specifically for your business.

  • Coverage of $100K per incident (specific to fees leveled and the cost of the audit and claims process)
  • Employee fraud included
  • Coverage provided whether merchant is PCI Compliant or not


Risks of Non-Compliance

  • Damage to reputation
  • Loss of customer trust/confidence
  • Card fraud liability
  • Significant chargeback risk
  • Penalties, fines, and losses
  • Lawsuits
  • Inability to continue to process credit card payments

How Does Enrollment Work?

  • Once you receive your welcome email, you will receive instructions with your next steps. The welcome email includes your login information for the toolkit platform.
  • The enrollment email for PCI Compliance will be sent from  do_not_reply@conformancetech.com. We recommend whitelisting this address so further emails will not be missed. You will be sent a reminder email to sign up. 
  • You will be asked to complete a business profile and SAQ (Self-Assessment Questionnaire)
    • Most of our terminal-based merchants will choose SAQ B or B-IP
    • Our online-only merchants will choose C-VT or A.
  • A walkthrough of the toolkit is available here: PQ Pay PCI Compliance Guide
  • Please reach out to us at hello@intakeq.com for any assistance completing compliance. 

What Fees Can We Expect?

  • Effective October 1, 2024 we will begin enrolling you in our new PCI Compliance program.
  • You will receive an email from do_not_reply@conformancetech.com regarding your login to PCI Toolkit and the next steps to begin your enrollment.
    • Once enrolled, you will have 90 days to become compliant. Enrollment begins when you are welcomed to the platform.
    • PCI Platform Fees of $7.50 will be assessed each month, beginning from your welcome to the platform.*
    • After 90 days, the PCI Non-Compliance Fees of $54.95 will be assessed each month if you are non-compliant. 
    • The fees will be deducted in the same method as payment processing fees.
  • This compliance toolkit and fee are being implemented by Stax, our payment processor of record, following other major global processors which already ensure merchants are PCI compliant as part of an industry-wide initiative to reduce the risk data breaches and fraud. The PCI Platform Fee* covers enrollment in the PCI Toolkit, continued monitoring and maintenance, access to expert support, as well as breach insurance.

*Merchants who were enrolled in the PCI Toolkit platform prior to November 1, 2024 were charged the rate of $10.00 per month for the month of October. We have since reduced the monthly fee to $7.50 per month. 

Still need help? Contact Us Contact Us