USA ePay is proud to be one of the very first gateways
to become PCI Level 1 compliant. PCI compliance is the standard of security in the credit card processing industry and validates our commitment to the security of our customers.
 

 
 
 
What is PCI DSS
The PCI DSS, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc. International, to help facilitate the broad adoption of consistent data security measures on a global level.
  

The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures. This comprehensive standard is intended to help organizations proactively protect customer account data.

      

Our Level 1 Service Provider
USA ePay is partners with Trustwave for our Level 1 PCI DSS compliance. Every year USA ePay goes through a rigorous security assessment that covers any and all aspects of our security policies and standards which must be enforced.
A Team Effort
PCI DSS compliance is a compilation of all the security standards from all the major credit card associations. These include: American Express DSOP, Discover DISC, MasterCard SDP, Visa CISP & Visa AIS.
  
USA ePay covers all the required security standards by being PCI DSS compliant. For more information on each association's requirements, please visit their individual websites.
  
Covering the Basics
The PCI DSS compliance covers some of the most important, yet basic vulnerabilities in the industry, including API Abuse, Access Control, Authentication, Code Permissions, Code Quality, Cryptography, Error Handling, General Logic Error, Input Validation and Environmental Security in regard to systems. These can be traced back to the original 12 requirements of Visa CISP:
  1. Install and maintain a firewall to protect data.
  2. Keep security and patches up-to-date.
  3. Protect stored data.
  4. Encrypt data sent across networks.
  5. Use and update antivirus software at all times.
  6. Restrict access to "need to know."
  7. Assign unique ID's to all users.
  8. Modify pre-set security settings of 3rd party vendor software.
  9. Trace all access to data by unique ID's.
  10. Regularly test your security systems and policies.
  11. Implement and maintain an information security policy.
  12. Restrict physical access to data. 
The program ensures the annual validation of merchants and service providers on both the issuing and acquiring side of the business.
   
  • Contacting Us
    It's easy to get in touch with us. We are here to help you when you need us.
  • Become a Reseller
    Are you a merchant service bank or ISO interested in reselling the gateway to your merchants? Get started today with USA ePay.
   

 

vTerminal Flash Demo
Sit Back and Watch
the flash demo of the Merchant Console vTerminal »

Guides & Manuals
Help and Documentation
on all of the available USA ePay products; free to download »

Images & Logos
For Press and Websites
USA ePay logos and images can be downloaded directly »

 

 

Solutions|Resellers|Developers|Support|Company

USA ePay and the USA ePay logo are registered trademarks of GorCorp Inc.
Copyright © 2007, GorCorp Inc., All Rights Reserved