New Visa Security and Payment Mandates:

Visa Inc. will issue a series of five security mandates pertaining to payment applications starting Jan. 1, 2008.

In a bulletin issued Oct. 23, 2007, Visa stated the mandates "require acquirers to ensure their merchants and agents do not use payment applications known to retain prohibited data elements and require the use of payment applications that adhere to Visa's Payment Application Best Practices (PABP)."

The mandates take effect over three years. Visa provided a summary of each:

Jan. 1, 2008: Newly boarded merchants must not use known vulnerable payment applications, and VisaNet Processors (VNPs) and agents must not certify new payment applications to their platforms that are known vulnerable payment applications.

• July 1, 2008: VNPs and agents must only certify new payment applications to their platforms that are PABP-compliant.
• Oct. 1, 2008: Newly boarded level 3 and 4 merchants must be Payment Card Industry (PCI) Data Security Standard (DSS) compliant or use PABP-compliant applications.
• Oct. 1, 2009: VNPs and agents must decertify all vulnerable payment applications.
• July 1, 2010: Acquirers must ensure their merchants, VNPs and agents use only PABP-compliant applications.

For a list of PABP-validated applications, visit www.visa.com/pabp.

Home Equipment Information Equipment Leasing Contact Us About US Shipping & Returns Privacy Policy Related Links Glossary News

Electronic Payments, Inc. (EPI) is a Registered ISO/MSP of BancorpSouth Bank, Tupelo, MS - Member FDIC
USAMerchantSolutions.com is an Electronic Payments, Inc. operated website
USA Merchant Solutions - All Rights Reserved Copyright 2003 - 2007 ©