Independent software vendors need higher level of security

Independent software vendors need higher level of security

PCI compliance is great to have for an independent software vendor, but Rob Bertke, senior vice president for R&D of Sage Payment Solutions, said on Business Solutions that these vendors also need another level of security by making sure they are Service Level Provider 1 compliant.

Bertke wrote on the website that SLP 1 compliance should be considered a mandatory requirement by internet service vendors. Working with technical support teams to understand the latest data security threats and obtain SSL certificates can help companies stay one step ahead of malicious attacks and, as a result, remain a trusted brand among consumers.

"Lastly, challenge your processor to offer PCI assistance, including literature and consulting," Bertke said, according to Business Solutions. "How your processor reacts to these three areas should offer you a sense of confidence in them, or a feeling of doubt."

In an article from 2009 on Business Solutions, Sean Kramer, president and CEO of Element Payment Services, said ISVs did not use to worry about PCI compliance but now must make sure they meet PCI DSS standards.