(Not to worry, as your provider, we will determine this.)
Each card brand has it’s own merchant level. To give you an example here is Visa’s (the most widely used card). Visa is divided into 4 categories based on Visa card transactions over 12 months. Your level will determine how stringent your PCI Compliance program must be.
Level 1 – Process over 6 million Visa transactions a year.
Level 2 – Process between 1-6 million Visa transactions per year.
Level 3 – Process between 20k-1 million Visa transactions per year.
Level 4 – Process under 20k Visa transactions per year.
(Note; these are transactions not dollar amount.)
Links to the card brands levels are listed here:
By federal law, PCI Compliance is not required. However, some states like Nevada has put PCI Compliance into their state law.
Aside from that, businesses that are not PCI Compliant may be subject to fines, sanctions and loss of privileges from the clearinghouse that processes credit card payments. If the PCI failure results in the loss of data, the business could face fines, higher fees, and other sanctions from banks and other credit card processors. Businesses can also be subject to lawsuits and government prosecution for failing to protect customer data. If a data breach occurs, your business will be liable for all damages if not PCI Compliant.
(888) 700-6516
Sales ext 300
1900 E. Ocean Blvd
Long Beach, Ca 90802