Sysnet is pleased to announce that we are now a Qualified Integrator and Reseller (QIR) provider. The PCI Security Standards Council accreditation, allows qualified companies to implement, configure, and/or support validated PA-DSS Payment Applications on behalf of merchants or service providers for the purposes of performing Qualified Installations as part of the QIR Programme.
Due to a high level of breaches that have targeted small merchants in the US and Canada, the Visa QIR Programme requirements only apply to level 4 merchants in these countries.
Visa has stated that all US and Canadian acquirers must communicate to their Level 4 merchants, that beginning January 31st 2017 that they must use only PCI-certified Qualified Integrators and Resellers for point-of-sale (POS) application and terminal installation and integration.
Using point of sale (POS) integrators and resellers from the list of PCI authorised QIR companies will ensure that merchants are not another victim of hackers targeting improperly installed POS applications. Hackers exploit security weaknesses in merchant POS payment environments to gain access to cardholder data.
In particular, hackers are often able to compromise the integrator/resellers’ remote monitoring and support access to the merchant environment.
Estimated 5 million Level 4 merchants
According to Visa there are an estimated 5 million Level 4 merchants who could be affected. However Visa recently communicated that there are a few exceptions to this mandate; “Merchants using single-use terminals without Internet connectivity are considered low risk and may be excluded from these requirements.
Additionally, if a merchant does not use a third party for POS application or terminal installation, integration or maintenance, the requirement to use a QIR does not apply.”
As a QIR provider Sysnet is fully qualified to access, install, maintain and support payment applications (and dependent software) securely and in accordance with the information provided by the PA-DSS application vendors in their Implementation Guides. We can, therefore provide a full QIR installation and integration service to ensure that your Level 4 merchants are compliant with the new Visa rules.
If you are a merchant that requires technical or PCI DSS help, please click here