PCI Compliance Information
Terms of Use
CMS Enterprise Connect uses payment process systems, which are PCI and DSS compliant.
CMS Enterprise Connect uses these advanced security measures to ensure your identity and private information are safe and secure. The system uses the latest and most advanced 128-256 SSL certificate and secure gateway.
The shopping cart employs SSL (Secure Socket Layer) encryption to ensure the security of all of your transaction data. SSL is an industry-standard technology that securely encrypts the personal information and payment data exchanged between your computer and our servers. You will notice that when you are in our shopping cart, the web address begins with "HTTPS:" instead of "HTTP:" as well as a lock icon either beside the address bar or in the status bar at the bottom of your browser's screen, of which indicates that SSL is in use and your data is secure.
What is PCI compliance?
Payment Card Industry Data Security Standards (PCI DSS) are network security and business practice guidelines adopted by Visa, MasterCard, American Express, Discover Card, and JCB to establish a “minimum security standard” to protect customer’s payment card information. It is a requirement for all merchants that store, transmit, or process payment card information.
WePay, Square, and other processing centers is PCI compliant
Because we use WePay, Square, Email Payments, or other payment links to the store, transmit or process payment card information, by law we must:
-
Build and maintain a secure network to protect payment card information
-
Maintain a vulnerability management program
-
Implement strong access control measures
-
Regularly monitor and test networks
-
Pass quarterly remove vulnerability scans
-
And more …
The shopping cart adheres to domestic and international PCI (payment card industry) compliance standards for data security. With website payments standard, email payments, and a shopping cart handles the payment card information for you. Therefore, you do not have to worry about your buyers’ payment card security or about compliance with PCI DSS for your business.
What is the Payment Card Industry (PCI) Data Security Standard (DSS)?
PCI DSS is a set of comprehensive requirements for enhancing payment account data security established by American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa Inc. International. It was developed to help the broad adoption of consistent data security measures on a global basis. All merchants that process, store, or transmit payment card information for American Express, Discover, JCB, MasterCard, or Visa are required to be PCI DSS compliant.
How does Website Payments Standard make your payments PCI DSS compliant?
As customers shop on your site, they click a button to pay using their bank account, credit card or PayPal account. In any case, your customers pay for a secure hosted page. Because credit card processing company stores your customer’s credit card account information, you will not need to worry about protecting stored cardholder data, encrypting data in transit, or restricting access to cardholder data. We continually maintain and regularly validate the security of Website Payments Standard.
Committed to data integrity
Website payments standard has achieved PCI DSS compliance certification under the Visa Cardholder Information Security Program and the MasterCard Site Data Protection Program. In addition, all the shopping cart providers that CMS Enterprise Connect uses has achieved the American Institute of Certified Public Accountants Statement of Auditing Standards #70 (SAS70) certification. This underscores our strong commitment to making security a central focus of our development efforts and protecting the safety and integrity of customer data.
More on PCI Compliance
For additional information on PCI Compliance, visit the PCI Compliance Guide website. Listing of Online shopping cart providers that are certified PCI compliant resides in the following documents: Find us on Visa's list Find us on MasterCard's list
This PCI & DSS Compliance policy was last updated on April 12, 2022.