PCI Compliance with Trilogy Payment Solutions

Trilogy Payment Solutions, based in Fort Worth, Texas, offers competitively priced merchant services.

Contact info: Office 817-877-3700 and Fax 817-877-3744

PCI DSS Compliance

What is PCI? The Payment Card Industry Data Security Standards (PCI DSS) is a set of comprehensive
requirements for enhancing payment account data security developed by the founding payment brands
of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB
International, MasterCard Worldwide and Visa, to help facilitate adoption of consistent data security
measures on a global basis. More detailed information and a FAQ can be found on the PCI Security
Standards Council website. Learn more by viewing the video at the bottom of this page.

What does this mean to you? As a merchant accepting credit cards, you are required to provide
validation of PCI DSS compliance. This web page is a tool to help accomplish this goal. The table below
explains the requirements. Validation can be achieved in one of two ways: (1) Do it yourself;
or (2) utilize a Qualified Security Assessor (recommended), such as Trustwave.

WHO	WHAT	WHEN	WHERE	WHY	HOW
All merchants	You must complete the appropriate PCI-DSS Self Assessment Questionnaire (SAQ) and submit Attestation of Compliance (AoC) to Trilogy. (NOTE: The majority of merchants will complete SAQ B.)	Validation must be provided upon becoming a merchant with Trilogy.	Required SAQ's and AoC's forms are available for download on the PCI website. If you desire professional assistance, you will find a list of Qualified Security Assessors (QSA) on the PCI website.	Failure to provide validation will result in a monthly non-compliance fee, the risk of losing your merchant account, and potential auto-enrollment in a PCI program at market rates.	A completed and signed SAQ and AoC must be submitted to Trilogy via fax at 817-877-3744 or 800-609-8010; or e-mailed to the address below. If you use Trustwave, they will provide your validation documents to Trilogy directly.
Merchants who process credit card transactions on any system with an outward facing (external) IP address	You must have your network scanned for vulnerabilities by an Approved Scanning Vendor (ASV).	Same as above.	A list of ASV's is available on the PCI website. Scanning must be performed by an ASV.	Failure to validate your your network will result in a monthly non-compliance fee, the risk of losing your merchant account, and potential auto-enrollment in a PCI program at market rates.	A passing scan certification report must be submitted to Trilogy via fax at 817-877-3744 or 800-609-8010; or e-mailed to the address below. If you use Trustwave, they will provide your scan results to Trilogy directly.

Trilogy has negotiated favorable rates for validation and scanning services with Trustwave (QSA/ASV)
to aid in meeting these PCI DSS requirements. You may use them or any other approved QSA/ASV
firm to assist with your validation goals. If you elect to use Trustwave's services - please use one
of these codes to receive the favorable rates: trilogysaq for SAQ service or trilogyscan for scan service.
Trustwave's customer service number is 800-363-1621.

If you have any questions or need additional information, please call 800-609-7880 or e-mail
pci @ trilogypayment.com (remove the spaces around the @ sign).

Send mail to webmaster with questions or comments about this web site. Copyright © 2004-2010 Trilogy Payment Solutions, LP. View our Privacy Policy and our Patriot Act Notification.

Send mail to webmaster with questions or comments about this web site.
Copyright © 2004-2010 Trilogy Payment Solutions, LP. View our Privacy Policy and our Patriot Act Notification.