On January 1st 2018, a number of card payment machines became non PCI compliant. In simple terms, the affected devices no longer meet the latest card scheme requirements and must therefore be removed and replaced with newer models.
Who is affected?
Any merchant using a PCI v.1x PED (Pin Entry Device) in an attended (face-to-face) or semi-attended environment. It is estimated that there are still thousands of these machines being used.
Why is this happening?
A number of card machines have been successfully (and fraudulently) removed, modified and reintroduced back into the payment infrastructure, allowing fraudsters to capture card details and PINs. In particular, devices that use the same single slot to read both the chip and magnetic stripe have been the target of such activities.
What do you need to do?
We strongly recommend you check that your machine is still compliant. If you are an acceptcards® customer you will have been contacted directly to arrange an upgrade. If not, we recommend you contact your card machine provider as soon as possible or feel free to give us a call and we’ll be happy to assist.
What happens if you don’t do anything?
Your machine will no longer be supported, this means should the terminal fail or be accidentally damaged there won’t be any swap out service or technical support. You will be an easier target for fraudsters and if you continue to use a non-compliant card machine you could also potentially face financial penalties.
If you have more questions or would like to discuss your options, contact the acceptcards® team.
Written by Jo Kava – Terminal Support Manager