Business Security + Data Protection

Empowering you to safeguard your business, and its future.

As a business owner, it can be easy to overlook old habits and business methods. For example, do you still jot down customer credit card details on a piece of paper before entering them into your system? Or, are they stored without security on a spreadsheet? Data breaches are increasing and can have severe and long-lasting impacts on the companies that experience them.

The 2017 American Express Digital Payments Survey report found that 37% of customers will abandon an online payment because of security fears, which could result in real losses for your business. It’s more important than ever to create a safe and trustworthy security system, both online and off.

When customers feel safe with their payments your business will improve

Are you PCI DSS compliant?

Whilst all business owners are mindful of their customers’ safety, many New Zealand businesses are unaware that it is compulsory to be PCI DSS compliant (Payment Card Industry Data Security Standard). This international standard comes in various levels of compliance, depending on the types of products or services your business offers, online or off.
In the age of online payments and automated processing, ensuring you are PCI compliant is the best way of assuring your customers you can be trusted with their sensitive information.

Learn More

PCI DSS compliance is enforced by the PCI Standards Council.

If you’re a business that processes or stores credit card data electronically, your business must follow the guidelines to be compliant.

There are different levels of PCI compliance, which come with different guidelines, depending on how your business uses data. You can find out more about these guidelines here.

PCI compliance is the most effective way to ensure you're focussing on data security for your customers. Aside from avoiding data breaches, you’ll also avoid fines from banking institutions, plus your customers can quickly work out whether to trust your business to handle their sensitive information appropriately.

Compliance is mandated, and our Merchant Trust Initiative program can help you become compliant.

You’re in great company.

Over 27,000 Australian and New Zealand businesses choose Ezidebit as their preferred payment solution. Completely scalable, we have designed a complete payment processing suite that meets your needs, no matter what stage of the business journey you’re at.

Enquire today

Ezidebit Merchant Trust Initiative (MTI)

Our Merchant Trust Initiative (MTI) is designed to educate and inform you of your responsibilities and obligations when handling and managing cardholder data, giving you the tools you need to improve security within your business. Our program also enables you to become PCI compliant.

Step-by-step Guide

Designed to guide you through the Self-Assessment Questionnaire (SAQ), which is required to ensure you are processing payments in a secure manner.

Endpoint protection

Protect your computers against unknown threats such as viruses, adware, Trojan horses and worms with our downloadable endpoint protection.

Vulnerability Scanning

Protect your computers against cyber risks with automated vulnerability scanning. We’ll help you keep an eye on things when you don’t have the time to.

Dedicated 24/7 Support

If you need help with the SecureTrust portal, completing your SAQ, and the included security tools (endpoint protection, vulnerability scanning), just call 0800 554 445 and select Option 1, or email support.

Ezidebit Business Security MTI Features

Cyber Liability Insurance

Eligibility for an exclusive discount on Cyber Liability insurance through our partnership with BizCover - apply now. Terms and conditions apply.

Increase Trust with your customers

Your customers can be assured that their personal and payment card data has been treated in the safest way possible, reducing the chances of payment card data being stolen.

SecureTrust PCI Manager

SecureTrust is an all-in-one solution that helps you meet your PCI DSS compliance requirements, simplifying certification with a step-by-step guide.

Watch a video to get started with SecureTrust PCI Manager.

PCI DSS Compliance is a combined approach. Is your business secure?

Frequently Asked Questions

What is PCI DSS Compliance?

The Payment Card Industry Data Security Standard (PCI-DSS) was created to ensure there is a consistent set of standards for the processing, handling and storing of sensitive credit card information. PCI-DSS compliance can be extremely complicated and challenging. However, at Ezidebit, we aim to help our customers navigate the standards by providing tools to help increase your security and ensure compliance is met.

Which businesses are required to be compliant?

Every business that handles cards, from major enterprises to the smallest businesses, regardless of their size or transaction volume, must ensure they are compliant with the requirements in the PCI DSS. Not doing so may result in suspension from processing cards from certain providers. By staying compliant with PCI DSS requirements, you can be confident that you are doing the right thing by your customers.

How do I know if I’m already PCI DSS compliant?

If you complete a yearly assessment of your PCI DSS status, which is completed using a Self-Assessment Questionnaire (SAQ) accurately, and your assessment shows you have no outstanding actions, then you are PCI-DSS compliant. If you have a portal or e-commerce website, this will include providing evidence of quarterly vulnerability scans from an PCI-SSC approved scanning vendor.

Can I opt out of the initiative?

It is mandatory for all merchants who accept credit cards to be compliant with the PCI Data Security Standard, and this applies regardless of size or how they accept payments. This is not just limited to completing a Self-Assessment Questionnaire (SAQ), but requires a number of steps and regular scans to ensure obligations are met. This is where the Merchant Trust Initiative helps you simplify the steps within the process. If you are already able to show your compliance from another provider, or choose to opt out, click here. The form will outline your obligations as a customer of Ezidebit, so please ensure you understand and meet all these requirements prior to opting out.

I thought by being with Ezidebit, I was already PCI DSS compliant?

Ezidebit is Level 1 PCI DSS compliant business. However there is a point prior to any of this data being entered into our systems that merchants have an obligation to protect card information. This is part of the reason we have launched the Merchant Trust Initiative - to educate and increase knowledge around these obligations to ensure better cybersecurity and data protection practices.

What are the penalties for PCI DSS non-compliance?

Fines for PCI DSS non-compliance can range from $5,000 to $100,000 per month per violation.

How long do I have to become compliant?

You will have 12 months to complete your certification using the SecureTrust PCI Manager.

Where can I get more information about the card scheme rules around PCI DSS compliance?

Each of the card schemes have rules that apply to different members of the supply chain within the payment card industry. The following list from each of the card scheme members outlines their specific rules.

Visa
MasterCard
Discover Financial Services
JCB International

Latest Resources

View All

Products

Software Integrations

Join Ezidebit’s Partner Program

Resources

Find out how Direct Debit can grow your business