Erik from PCICompliance.com 
Phone Orders: Which SAQ? Bottom Line Up Front If you just received a PCI compliance questionnaire from your payment processor and you’re taking phone orders PCI compliance seriously, here’s the good news: most businesses that accept card payments over the phone qualify for one of the simpler SAQ types. You don’t need a computer science … Read more
Changed Processor: New PCI? The Truth About Changing Payment Processors and PCI Compliance So you just changed payment processor PCI requirements landed in your inbox, and now you’re wondering if you need to start your compliance journey all over again. Here’s the good news: if you were already PCI compliant with your previous processor, you’re … Read more
New Website: Do I Need PCI? So you just launched your new website, or maybe you’re planning to accept credit cards online for the first time. Your payment processor sent you something about “PCI compliance” and now you’re wondering if this applies to you. The quick answer: if you accept credit cards in any form … Read more
PCI Compliance in Contract: What That Letter from Your Payment Processor Actually Means Bottom Line Up Front If you just received a PCI compliance contract or questionnaire from your payment processor and you’re feeling overwhelmed — take a breath. For most small businesses, PCI compliance is far simpler than it initially appears. You probably qualify … Read more
PayPal Requesting PCI Compliance? Here’s What You Actually Need to Know So PayPal (or another payment processor) just sent you a PCI compliance request, and you’re staring at terms like SAQ, AOC, and ASV wondering if you accidentally signed up for a government security clearance. Take a breath — for most small businesses, PCI compliance … Read more
PCI Scan Blocked by Firewall Bottom Line Up Front If your payment processor just sent you a PCI compliance questionnaire and you’re staring at it wondering what “quarterly ASV scans” and “network segmentation” mean — relax. For most small businesses, PCI compliance is simpler than you think. Yes, you need to complete it to keep … Read more
MySQL Security for PCI The Bottom Line Just received a PCI compliance questionnaire from your payment processor? Take a breath. For most small businesses, achieving PCI compliance is simpler than it sounds — especially if you’re using modern payment systems. You don’t need a security degree or an IT department. This guide will walk you … Read more
Apache Web Server PCI Fixes: A Beginner’s Guide to PCI Compliance The Truth About PCI Compliance (It’s Not as Scary as You Think) If your payment processor just sent you a PCI compliance questionnaire and you’re staring at it wondering what on earth PCI DSS means or why they’re asking about Apache vulnerabilities PCI issues, … Read more
SSH Security for PCI The Bottom Line on SSH Security and PCI If you just received a PCI compliance questionnaire from your payment processor and you’re seeing questions about SSH security, take a deep breath. For most small businesses, securing SSH for PCI compliance is simpler than it sounds. SSH (Secure Shell) is just a … Read more
Heartbleed Vulnerability PCI Fix Don’t Panic — Your PCI Compliance Journey Starts Here You just opened an email from your payment processor with “PCI Compliance Required” in the subject line. Maybe it included a questionnaire with dozens of technical-sounding questions about firewalls and encryption. Your first thought: “What is this, and do I really need … Read more
