Payment Card Industry Data Security Standard (PCI DSS)
As a businesses handling credit card transactions, Cleverbridge consistently maintains a compliant environment through rigorous checks and adherence to PCI DSS standards. We exclusively accept credit card orders compliant with these standards, using state-of-the-art secure encryption layers and processing transactions securely via HTTPS. Cryptographic controls ensure information confidentiality, authenticity, and integrity, with policies using encryption and key management.
Our services offer you:
1. Reduced responsibility
By using Cleverbridge-hosted payment pages, all credit card information is directly sent to Cleverbridge, sparing your system from handling sensitive cardholder data. Consequently, your company avoids implementing many of the strictest PCI DSS standards.
2. Significant cost savings
Cleverbridge shoulders various PCI DSS compliance costs, covering initial implementation and recurring auditing fees, thereby mitigating potential fines for non-compliance. As estimated by Gartner for level 1 merchants (processing in excess of 6 million transactions of a single card type per year), implementation costs include:
- 200,000 USD for assessing the scope of required PCI DSS work (scope assessment during initial implementation).
- 600,000 - 1.1 million USD to meet the requirements.
Regarding recurring auditing fees, determined by annual transaction volume and other factors, the average annual audit cost is $225,000 USD for level 1 merchants.
3. Avoidance of violation fines
We protect you from severe PCI DSS non-compliance fines, which may include:
- Fines of up to $90 per compromised cardholder data
- Suspension of credit card acceptance
- Damage to brand reputation
- Expenses associated with hiring a PCI Qualified Forensic Investigator, ranging from $130 to $200 per hour for a one- to two-year project