PCI DSS Compliant

Prepare Yourself for PCI-DSS 3.2

PCI-DSS 3.2 went into full effect in April 2015, which means that every organization that stores or processes cardholder data must now fully comply with the new standards. At MegaplanIT, we have a keen understanding of the challenges many businesses face when updating their systems to meet these more stringent regulations. Our expert PCI Qualified Security Assessor (QSA) team specializes in keeping our clients' data environments fully up to date. We'll guide you through the differences between PCI-DSS standards and keep your business compliant by regularly testing and updating all controls and devices within your cardholder environment. Contact us today to experience the MegaplanIT difference and learn how we can make your PCI-DSS transition simple and painless.

Key Benefits of PCI-DSS PLUS

Accurate assessments at an amazing value

Our clients have two primary concerns when it comes to PCI-DSS compliance: time and value. MegaplanIT's PCI-DSS Plus program is an all-in-one solution for PCI-DSS compliance that was designed to address these particular concerns. Our bundled compliance solution takes a streamlined approach, both on and off-site, to get your business ready for your next assessment and keep you compliant all year long. Our expert QSA's know how to most effectively implement the processes merchants of all sizes need to protect cardholder data and keep sensitive information secure. With over a decade of experience, MegaplanIT has a long record of excellence in developing accurate PCI-DSS Compliance Reports that provide the best value in the industry. Contact us today to find out how our PCI-DSS Plus Program can save your business time and costs.

Included policies and procedures

Included Policies and Procedures assistance alleviates the headaches (and costly mistakes) that many business owners run into while trying to develop these technical documents. Bundling this service with your PCI-DSS assessment may save you hundreds, if not thousands, of dollars.

Included trusted advisory and remediation

Included Trusted Advisory and Remediation means that MegaplanIT will assist you with any system changes made throughout the year that might affect your PCI compliance status. This service may actually reduce the time and cost of your PCI assessment year after year!

Free PCI-DSS 3.2 Gap Assessment

To help prepare you for the new PCI-DSS 3.2 standards, MegaplanIT will compare your cardholder environment's current security controls against the revised requirements and provide you with an analysis that includes a list of controls that will need to be updated or replaced. This saves time and costs by identifying exactly which services your business needs.

Two QSA's Per Assessment

MegaplanIT assigns a Primary and Secondary QSA to every PCI-DSS assessment, so you will always be able to reach a compliance expert when you need one. Our policy of assigning two QSA's provides greater flexibility with your schedule and more accurate compliance reports.

PCI Compliance Project Management

Our Compliance Project Management service ensures that all deadlines are met in advance. While two QSA's are conducting your assessment, MegaplanIT's management team will gather the resources necessary to create your final Report on Compliance.

Cost Effective PCI Compliance

MegaplanIT understands that assessment costs can seem pricey. We strive to reduce costs across the board without sacrificing quality. In fact, if your assessment takes longer than our original estimate, MegaplanIT will absorb the cost.
NEED ANOTHER TYPE OF ASSESSMENT?
Select an assessment from the dropdown menu for more information.

What PCI level are you?

1

LEVEL ONE

MERCHANT/SERVICE PROVIDER INFORMATION

Merchants processing over 6 million Visa transactions annually (all channels) or Global merchants identified as Level 1 by any Visa region.

PCI-DSS Validation Requirements:

  • Annual Report on Compliance (“ROC”) by Qualified Security Assessor (“QSA”) or internal auditor if applicable.
  • Quarterly network scan by Approved Scan Vendor (“ASV”).
  • Attestation of Compliance Form.
 

VisaNet processors or any service provider that stores, processes, and/or transmits over 300,000 Visa transactions annually.

PCI-DSS Validation Requirements:

  • Annual On-Site PCI Data Security Assessment.
  • Quarterly network scan by Approved Scan Vendor.
2

LEVEL TWO

LEVEL 2 MERCHANT/SERVICE PROVIDER INFORMATION

Merchants processing 1 million to 6 million Visa transactions annually (all channels).

PCI-DSS Validation Requirements:

  • Annual Report on Compliance (“ROC”) by Qualified Security Assessor (“QSA”) or internal auditor if applicable.
  • Quarterly network scan by Approved Scan Vendor (“ASV”).
  • Attestation of Compliance Form.
 

Any service provider that stores, processes, and/or transmits less than 300,000 Visa transactions annually.

PCI-DSS Validation Requirements:

  • Annual PCI Self-Assessment Questionnaire (SAQ).
  • Quarterly network scan by ASV.
3

LEVEL THREE

LEVEL 3 MERCHANT INFORMATION

Merchants processing 20,000 to 1 million Visa e-commerce transactions annually.

PCI-DSS Validation Requirements:

  • Annual SAQ.
  • Quarterly network scan by ASV.
  • Attestation of Compliance Form.
4

LEVEL FOUR

LEVEL 4 MERCHANT INFORMATION

Merchants processing less than 20,000 Visa e-commerce transactions annually and all other merchants processing up to 1 million Visa transactions annually.

PCI-DSS Validation Requirements:

  • Annual SAQ recommended.
  • Quarterly network scan by ASV if applicable.
  • Compliance validation requirements set by acquirer.
See All Levels

READY TO GET STARTED? TALK TO OUR TEAM TODAY.