First Data announced a new PCI Compliance fee for all Tier 4 merchants. This bulletin will or already has been place on merchant statements. Basically, they require all merchants to complete a self assessment survey and all merchants will be subject to a $79 annual compliance fee; non-compliance will be result in additional fees of $19.95 per month.

If you have not already completed one, please go to PCI Security Standards Council, download the
appropriate PCI SSC Self-Assessment Questionnaire, and immediately complete. All level 4 merchants should be in full compliance per the terms of accepting Visa, MasterCard etc. The PCI Data Security Standard Self-Assessment Questionnaire is a validation tool intended to assist merchants and service providers in self-evaluating their compliance with the Payment Card Industry Data Security Standard (PCI DSS).

This fee will affect over 100,000 merchants because First Data is a huge partner with Independent Service Organizations (ISO’s). Even though you may have a merchant agreement with an ISO, such as First Payment Systems, the agreement will clearly state it is underwritten by First Data or another entity.

First Data Selects SecurityMetrics for PCI Initiative (download press release PDF)

First Data Merchants Attain Record PCI Compliance in Just Six Months. Over 100,000 Businesses Secured with SecurityMetrics’ PCI DSS Compliance Service.

HAGERSTOWN, MD  & SALT LAKE CITY — (APRIL 2, 2009) – SecurityMetrics, the world leader in PCI security, today announced that over 100,000 US merchants in First Data’s Merchant Services portfolio enrolled to achieve compliance in SecurityMetrics’  Payment Card Industry (PCI) Data Security Standard (DSS) Site Certification services.

“SecurityMetrics provides our Level 4 merchants with a simple way to secure credit card payment data, and ultimately, help them better serve their customers’ payment needs and enhance data privacy,” said Carl Mazzola, senior vice president, First Data.

First Data selected SecurityMetrics to facilitate customer compliance with PCI DSS in September 2008. Through the relationship, SecurityMetrics provides First Data’s small to mid-sized merchants with access to the most advanced security tools and PCI expertise available.

“As a leading merchant electronic payment services provider, First Data is helping the credit card
industry by providing an inexpensive means for First Data merchants to protect their credit card data.  This helps to create consumer confidence at a time when large credit card breaches are happening with more frequency.  Other processors and banks need to help their merchants protect their data so our credit card transaction information will remain safe,” said Brad Caldwell, SecurityMetrics’ CEO.

Under the program, SecurityMetrics provides First Data merchants with access to a comprehensive PCI compliance program that includes unlimited live technical support 24 x 7, unlimited manual scanning, weekly reminders and consulting services.

To learn more about how to enroll in SecurityMetrics’ PCI Compliance Solutions through First Data, contact a representative at 801.705.5665 in North America or 0207.993.8030 in Europe.

About SecurityMetrics

SecurityMetrics, Inc. is a leading provider of Payment Card Industry (PCI) Data Security Standard (DSS) security solutions. SecurityMetrics is certified to perform PCI Scans (ASV), PCI audits (QSA), Payment Application Best Practices audits (QPASP), MasterCard Point of Sale Terminal Security Program audits, penetration tests and forensic analysis. SecurityMetrics also offers a security appliance that includes vulnerability assessment, intrusion detection and intrusion prevention capabilities. SecurityMetrics is a privately held corporation headquartered in Orem, Utah. For more information contact SecurityMetrics at (801) 724-9600 or visit www.securitymetrics.com.

About First Data

First Data powers the global economy by making it easy, fast and secure for people and businesses to buy goods and services using virtually any form of electronic payment.  Whether the choice of payment is a gift card, a credit or debit card or a check, First Data securely processes the transaction and harnesses the power of the data to deliver intelligence and insight for millions of merchant locations and thousands of card issuers in 37 countries. For more information, visit www.firstdata.com.

related article: First Data PCI DSS Compliance Fee for Tier 4 merchants

This summer, First Data conducted a consumer loyalty study focused on rewards programs for the financial institution market sector.  More than 1,000 U.S. consumers participated in the study. Key findings include:

• Credit card rewards programs are the most popular, versus debit card or “other banking” rewards programs such as those tied to savings accounts



• Consumers are frustrated – especially when they cannot use the rewards being offered or have no choice when selecting rewards



• Consumers have strong opinions about what constitutes a “unique rewards program”



• The  most important program features are the ability to select rewards and ease of use

More detail is available on these findings.  Credit card rewards program study goes into further detail on these findings and provides additional statistics that offer important perspectives for financial institutions to consider.