PCI Certification from TrustedSite Security uses a simple, three-step process to ensure that your business can accept and process payment cards both online and in the real world.
1. Define your PCI Scope
PCI Scope is best thought of as how many payment card transactions are being processed and from how many sources.
We cannot help you define your PCI scope. Your bank will help you define your scope. Further, you must ask your banker to define your PCI scope once a year to stay compliant, as your business may change.
2. Get scanned quarterly
Based on your PCI Scope, we will scan your site once a quarter against a list of vulnerabilities provided by the PCI Council. Passing this scan every three months is necessary to being PCI Compliant. If your business does not pass the scan, our remediation team will assist you to help fix your vulnerabilities.
3. Get a certificate of attestation
The scan information is sent to a third-party PCI auditor who verifies the results. This auditor then provides you with a certificate of attestation that declares you PCI compliant. Whenever your bank requires it, you must provide them with this certificate (up-to-date for the current business quarter)