Merchant Services

PCI DSS Information

Merrick Bank requires all of its merchants to be compliant with the Payment Card Industry Data Security Standard ("PCI DSS"). PCI DSS is a multi-faceted payment card industry security standard that includes requirements for proactively protecting customer account data. It encompasses, but is not limited to, data security management, network architecture, and software. Please refer to the PCI category on this site for more in depth information in this regard. You also may refer to https://www.pcisecuritystandards.org for additional information on this topic.

According to the PCI DSS website, https://www.pcisecuritystandards.org, the following are the core PCI DSS principles and accompanying requirements, around which the specific elements of the PCI DSS are organized:

Build and Maintain a Secure Network
Requirement 1: Install and maintain a firewall configuration to protect cardholder data
Requirement 2: Do not use vendor-supplied defaults for system passwords and other security parameters

Protect Cardholder Data
Requirement 3: Protect stored cardholder data Requirement
4: Encrypt transmission of cardholder data across open, public networks

Maintain a Vulnerability Management Program
Requirement 5: Use and regularly update anti-virus software
Requirement 6: Develop and maintain secure systems and applications

Implement Strong Access Control Measures
Requirement 7: Restrict access to cardholder data by business need-to-know
Requirement 8: Assign a unique ID to each person with computer access
Requirement 9: Restrict physical access to cardholder data

Regularly Monitor and Test Networks
Requirement 10: Track and monitor all access to network resources and cardholder data
Requirement 11: Regularly test security systems and processes

Maintain an Information Security Policy
Requirement 12: Maintain a policy that addresses information security

Merrick Bank provides a unique, cost and time efficient online review process for determining a merchant's PCI DSS compliance status through its relationships with several of the top Qualified Security Assessors ("QSA").

Merrick Bank also offers an insurance program to reimburse expenses incurred by merchants in the event of a system intrusion or employee theft of cardholder data.

Merchant Services	Recreation Lending	Credit Products	Merrick Bank Home	Contact Merrick Bank
ISOS / MSP / Agent Banks Payment Settlement Merchant Relationships PCI DSS Compliance Industry Resources	Lending Services Dealer Login Loan Payment Center Loan Calculator	Account Login Agreements Secured Cards Mail Offers Member Programs	About Merrick CDs Careers Press Releases Bank Products	Financial Education Privacy Policy Terms & Conditions Security Policy Site Map

	Sponsorship Programs
	Payment Settlement
	PCI Compliance
	Merchant Relationships
	Useful Links