March 23rd, 2016 by Elma Jane
A data breach can occur from inside a business just as much as it can externally. The one common element between both is “Opportunity.” It doesn’t matter whether a business is a multi-national corporation or a small single-location.
Attacks from criminals can range in sophistication. While the sophistication of some attacks may be low, experts note that criminals continue to evolve their techniques and now they are becoming more sophisticated than ever.
While large corporations may have millions of customer records, they also maintain the resources to protect their sensitive information from the average criminal. It may take weeks, months, or even years for a criminal to penetrate the defenses of one large corporation. This is why attacks on small business are becoming so attractive to criminals.
It all goes back to the “Opportunity.” The average small business lacks the resources to properly protect their business from the variety of attacks at the disposal of criminals. Or worse, they may believe their business is of no interest to criminals. The fact is, they are less secure than larger businesses. These are all issues for the average small business owner, and more importantly, their customers.
So what can a small business do to protect themselves from the growing threat of a data compromise?
- Background checks on employees.
- Have someone monitor the network activity.
- Protect business with proper network security protocols.
- Protect your payment’s environment by using a layered approach that includes EMV, encryption and tokenization to help prevent sensitive payment card data from being stolen.
These are all fairly simple and inexpensive ways for businesses to help protect themselves and their customers from being a victim of a costly data compromise.
Posted in Best Practices for Merchants, Credit Card Security, Travel Agency Agents Tagged with: card, customer, data, data breach, EMV, encryption, payment, Security, tokenization
March 3rd, 2016 by Elma Jane
Apple and Samsung, Plus HCE, Lending Momentum to Contactless
EMV migration in the U.S. is helping to establish NFC since nearly all EMV terminals come with built-in NFC capability. Consumers worldwide will make mobile payments with their handsets using near-field communication this year, nearly 70% will be Apple Pay and Samsung Pay users.
Some banks were offering mobile wallets based on HCE. Banks have responded to HCE because its cloud configuration stores and manages payments information, bypassing the secure element in the phone. This allows banks to introduce tap-and-pay mobile-payments services quickly because it eliminates the need to negotiate terms with mobile carriers and device manufacturers to gain access to the secure element. Cloud-based credentials can be tokenized to protect from hackers. Tokenization and HCE combination is extremely attractive to banks.
Apple, Samsung and a cloud-based technology host card emulation are playing a big role in spreading contactless payments.
Posted in Best Practices for Merchants, EMV EuroPay MasterCard Visa, Mobile Payments, Mobile Point of Sale, Near Field Communication, Smartphone Tagged with: banks, consumers, contactless, contactless payments, EMV, HCE, host card emulation, mobile, Mobile Payments, mobile wallets, Near Field Communication, nfc, payments, terminals, tokenization
February 17th, 2016 by Elma Jane
Helping customers protect and safeguard their payment data is one of NTC’s top priorities. Experts agree that a layered approach is the most effective way to combat evolving security threats and unauthorized access to payment data.
Implementation of best practices and the latest protection technology is needed to ensure of cardholder data protection from increasingly complex and evolving security threats.
EMV is a good start to enhance data security with card authentication, cardholder verification, and transaction authorization. But a multi-layered security approach that includes encryption and tokenization provides complete data protection to both merchants and their customers.
EMV alone is not enough because EMV authenticates the validity of the card and the cardholder, but it does not secure the data. With encryption and tokenization without EMV, as a merchant, you are liable for fraudulent transactions. Encryption and tokenization are a process or system to protect sensitive cardholder data but do not authenticate the data.
EMV is a key component to a multi-layered security approach. It secures the payment transaction with enhanced functionality, by combining EMV, encryption and tokenization merchants can have a complete data protection that they need.
Posted in Best Practices for Merchants, Credit Card Security, EMV EuroPay MasterCard Visa Tagged with: card, cardholder, customers, data, data protection, data security, EMV, encryption, merchants, payment, payment transaction, Security, tokenization, transaction
February 9th, 2016 by Elma Jane
Since the implementation of the EMV liability shift last year, consumers are still unsure whether to dip or swipe their payment cards at the checkout register, and transaction process itself is slower than a card swipe.
As the EMV process continues, can contactless register only help to make checkout process faster? With contactless register checkout only, consumers can just tap and pay with either card or mobile wallet.
Contactless like NFC is now a standard feature in most high-end smartphones, and most EMV-enabled point-of-sale terminals contain the necessary technology to accept contactless payments. So the idea of contactless register checkout only is something to test for some merchants in a certain retail sector.
Posted in Best Practices for Merchants, EMV EuroPay MasterCard Visa, Near Field Communication, Point of Sale Tagged with: cards, consumers, contactless, EMV, merchants, mobile, mobile wallet, nfc, payment, payment cards, point of sale, Smartphones, terminals, transaction
February 2nd, 2016 by Elma Jane
Businesses continue to struggle with the prohibited storage of unencrypted customer payment data. The Payment Card Industry Data Security Standard (PCI DSS), merchants are instructed that, Protection methods are critical components of cardholder data protection in PCI DSS Requirement.
PCI DSS applies to every company that stores, processes or transmits cardholder information. Regardless of the size or type of business you operate, the number of credit card transactions you process annually or the method you use to do so, you must be PCI compliant.
Data breach is not a limited, one-time occurrence. This is why PCI compliance is required across all systems used by merchants.
Encryption and Tokenization is a strong combination to protect cardholder at all points in the transaction lifecycle; in use, in transit and at rest.
National Transaction’s security solutions provide layers of protection, when used in combination with EMV and PCI-DSS compliance.
Encryption is ideally suited for any businesses that processes card transactions in a face to face or card present environment. From the moment a payment card is swiped or inserted at a terminal featuring a hardware-based, tamper resistant security module, encryption protects the card data from fraudsters as it travels across various systems and networks until it is decrypted at secure data center.
Tokenization can be used in card not present environments (travel merchants) such as e-commerce or mail order/telephone order (MOTO), or in conjunction with encryption in card present environments. Tokens can reside on your POS/PMS or within your e-commerce infrastructure at rest and can be used to make adjustments, add new charges, make reservations, perform recurring transactions, or perform other transactions in use. Tokenization protects card data when it’s in use and at rest. It converts or replaces cardholder data with a unique token ID to be used for subsequent transactions.
The sooner businesses implement encryption and tokenization the sooner stored unencrypted data will become a thing of the past.
Posted in Best Practices for Merchants, Travel Agency Agents Tagged with: card, card data, card present, cardholder, compliance, credit card, customer, data, data breach, data security, e-commerce, EMV, encryption, Mail Order/Telephone Order, merchants, moto, payment, Payment Card Industry, PCI-DSS, POS, secure data, Security, terminal, tokenization, tokens, travel, travel merchants
January 28th, 2016 by Elma Jane
The shift to EMV is helping to address vulnerabilities in the United States payments ecosystem. It has been shown that EMV can deliver benefits as a part of industry efforts to combat fraud.
EMV migration is a critical focus for enhancing payments security, which is why the current efforts around chip card deployment are greatly beneficial for consumers and merchants alike. EMV technology helps to reduce counterfeit card fraud, as it generates dynamic data with each payment to authenticate the card, after which the cardholder is prompted to sign or enter a PIN to confirm their identity.
The EMV rollout represents a dynamic time for card payments that promises great advances, among them is enhanced security for cardholders. It also presents an opportunity to consider other innovations such as mobile wallets and mobile POS to further engage your customers and drive customer loyalty. When merchants continue to invest in EMV and NFC (near field communications, used for tap-and-pay transactions), the purchases made at their EMV-enabled terminals are made more secure than magnetic stripe.
New mobile payment options such as mobile wallets support EMV and therefore offer this added layer of security. Ultimately, by enabling contactless payments, merchants can also enable more flexibility in addition to increasing security for their customers.
Additionally, industry players are backing major mobile wallets, such as Android Pay, Apple Pay, and Samsung Pay.
Posted in Best Practices for Merchants, Credit Card Security, EMV EuroPay MasterCard Visa, Smartphone Tagged with: card, cardholder, chip card, consumers, contactless payments, customers, data, EMV, fraud, magnetic stripe, merchants, mobile, mobile payment, mobile wallets, near field communications, nfc, payments, PIN, POS, Security, terminals, transactions
January 25th, 2016 by Elma Jane
New Timeframes for Electronic Gift Card Orders
Please be aware that NTC’s Electronic Gift Card (EGC) Design & Artwork team has upgraded their printers. The new timeframes for both FanFare and EGC (Givex) gift card shipments during non-peak times are the following:
- Standard Card Orders: 8 Business days, plus 2 Day Delivery
- Custom Card Orders: 12 Business days, plus 2 Day Delivery
Converge Mobile: Frequently Asked Questions
Will there be more EMV chip card readers in the future? Yes! Additional devices ranging in price points and feature/functionality will be introduced throughout 2016.
Do VirtualMerchant Mobile login credentials work with Converge Mobile?Yes! The mobile login credentials that customers use today for VirtualMerchant Mobile are the same for Converge Mobile.
Is the talech iCMP the same as the one sold for Converge and Converge Mobile? No! Please use item code CICMP for devices that will be used with Converge and/or Converge Mobile. Otherwise, there is device reconfiguration work that has to take place resulting in a negative customer experience.
UPCOMING EVENTS
 
April 19-21 May 2-4
TRANSACT 16 (ETA) Southeast Acquirers Association (SEAA)
INDUSTRY LINKS
|
|
Posted in Best Practices for Merchants, nationaltransaction.com Tagged with: card, chip card, Electronic gift card, EMV, gift Card, merchant, mobile, payment, payment technology, processor, travel, travel industry
January 18th, 2016 by Elma Jane
EMV + NFC = BIG PLUS FOR YOUR BUSINESS
The business is already making upgrades, so If you’re a merchant, business owner who’s still on the fence about upgrading your payment processing equipment to accept EMV cards why not take that upgrade a step further and add NFC while adding EMV systems?
Not only will the upgrade help prevent potential financial responsibility for fraudulent transactions, but you can also realize the added benefit of being able to process NFC transactions at the same time.
Customers want the ability to pay with a mobile device, and NFC will allow for such transactions to go on.
Having NFC tools in place will help provide a valuable note of future-proofing to systems in place, being ready for it will be to the business’ benefit.
EMV and NFC technology is just good business sense for three important reasons Added Security, Economic Sense and Staying Current.
For more information about terminal upgrade and features that suits best for your business give us a call at 888-996-2273.
Posted in Best Practices for Merchants, EMV EuroPay MasterCard Visa, Mobile Payments, Near Field Communication, Point of Sale, Smartphone Tagged with: cards, customers, EMV, merchant, mobile, nfc, Security, transactions
January 14th, 2016 by Elma Jane
We would like to let our customers know of additional benefits that are coming, in addition of the protection that chip card technology provides.
On January 24, Verifone will release a software update for your card terminal that will include two important new features:
- PIN Debit: With this feature, when your customer pays with a Visa, MasterCard or Discover chip debit card, your terminal will allow you to process it as a debit transaction. The update will change the prompts you’re used to seeing based on how the card is configured.
- Tip Adjust: If your business accepts tips, you will now have the option to add the tip at the time of sale or adjust it later, just like with non-chip card transactions. To use the tip adjust feature, simply skip the tip prompt during the sale.
Once the download is available, your card terminal will automatically receive the new application during its monthly update. For best results, leave your terminal on overnight to ensure it receives the update.
We appreciate your business and we are committed to providing you with solutions to ensure your ongoing transition to chip card acceptance is smooth.
For more information on terminal upgrade, please visit www.chipcardsuccess.com.
Start accepting credit card payments at your business with the following features on your new POS terminal: NFC + EMV PIN & Signature capable. Give us a call now at 888-996-2273 or visit our website www.nationaltransaction.com Payments Expert for Travel Merchants and more!
Posted in Best Practices for Merchants, EMV EuroPay MasterCard Visa, Near Field Communication, Point of Sale, Travel Agency Agents, Visa MasterCard American Express Tagged with: card, customers, EMV, MasterCard, merchants, nfc, payments, POS, transaction, travel, visa
January 7th, 2016 by Elma Jane
National Transaction is now offering Apple Pay to Canadian Merchants.
Apple Pay works with NTC’s EMV-contactless point of sale terminals in Canada.
Security and privacy is at the core of Apple Pay, and when a consumer adds a credit card to Apple’s mobile wallet, the actual card numbers are not stored on the device, or on Apple servers.
Apple Pay will create a unique Device Account Number that is assigned, encrypted and securely stored in the secure element on the device, the same way it operates in the U.S. Each transaction is authorized with a one-time unique dynamic security code.
To pay, consumers simply hold their mobile device near the contactless reader, exactly as they would a contactless card today. The payment information is then passed to the POS system once the consumer confirms the transaction using Touch ID on their device.
Bringing Apple Pay to NTC terminals addresses an increasing consumer demand for contactless payments, while also allowing Canadian businesses to offer customers the convenience of paying through an iPhone, iPad or Apple Watch.
American Express is Apple’s issuing partner in Canada.
Posted in Best Practices for Merchants Tagged with: Contactless card, contactless point of sale, contactless reader, credit card, EMV, merchants, mobile device, mobile wallet, payment, POS system, security code, terminals