Page 36 - 130902
P. 36
Vi
Vi
Vi
Viewewew
Knowledge of pr percent of revenues in the payments ercent of revenues in the payments
Knowledge of programs designed to help acquirers comply with card ograms designed to help acquirers comply with card
p
b
brand regulations is also key. Adhering to MasterCard's BRAM and Visa's rand regulations is also key. Adhering to MasterCard's BRAM and Visa's i industryndustry areare nontransactional,nontransactional,
GBPP programs, for example, can cut compliance costs and, in some cases, according to Aite Group LLC's
GBPP programs, for example, can cut compliance costs and, in some cases,
according to Aite Group LLC's
help acquirers receive safe harbor from compliance assessments.
Acquisition and Retention in Today's
help acquirers receive safe harbor from compliance assessments. Acquisition and Retention in Today's
Merchant Acquiring World study.
Merchant Acquiring World study.
3. Data breach re Banks receive 39 percent of revenues
3. Data breach reportingporting
Banks receive 39 percent of revenues
from nondeposit and nonlending
N
Ninety percent of businesses have had a breach, and 59 percent have had inety percent of businesses have had a breach, and 59 percent have had from nondeposit and nonlending
industries
Other
activities.
with
multiple br activities. Other industries with
multiple breaches, according to Ponemon Institute's Perceptions About eaches, according to Ponemon Institute's Perceptions About
noncore revenues that serve as great
N
Network Security report. Visa recommends in its Responding to a Data Breach etwork Security report. Visa recommends in its Responding to a Data Breach noncore revenues that serve as great
examples to emulate include Internet
advisor
advisory that merchants plan for a data loss incident by establishing y that merchants plan for a data loss incident by establishing examples to emulate include Internet
service providers, 51 percent; gas
r relationships with appropriate vendors. Acquirers and ISOs can profit by elationships with appropriate vendors. Acquirers and ISOs can profit by service providers, 51 percent; gas
stations, 30 percent; restaurants, 50
r reselling important security services to nonprocessing customers as well as eselling important security services to nonprocessing customers as well as stations, 30 percent; restaurants, 50
percent; sports teams, 56 percent; car
t their own merchant base while increasing customer loyalty and retention.heir own merchant base while increasing customer loyalty and retention. percent; sports teams, 56 percent; car
dealers, 57 percent; and airlines, at
dealers, 57 percent; and airlines, at
almost 100 percent.
Data breach reporting is one example of a revenue-generating security ata breach reporting is one example of a revenue-generating security almost 100 percent.
D
service t
service that can relieve merchants of the burden to report to authorities. hat can relieve merchants of the burden to report to authorities.
An ISO with 5,000 merchants could
T
Timing is critical to mitigate further penalties like fines and lawsuits. When iming is critical to mitigate further penalties like fines and lawsuits. When An ISO with 5,000 merchants could
add $150,000 per year in net revenues
merchants suspect they have lost sensitive personal data, they can contact chants suspect they have lost sensitive personal data, they can contact
mer add $150,000 per year in net revenues
directly to its bottom line by offering a
t their security partners to start the reporting process. Not having to do heir security partners to start the reporting process. Not having to do directly to its bottom line by offering a
breach reporting service.
extensive research while under duress, they can resume normal activities xtensive research while under duress, they can resume normal activities
e breach reporting service.
s
sooner.ooner.
Doing more wit
Doing more with lessh less
Pr
Profiting from compliance ofiting from compliance C
Certainly, payment professionals are ertainly, payment professionals are
time-strapped enough. It makes sense gh. It makes sense
time-strapped enou
Building nontransactional revenues from security services can help acquirers and evenues from security services can help acquirers and
Building nontransactional r
to take advantage of available tools that ge of available tools that
I ISOs lessen the effects of economic downturns and margin compression. Only 15 SOs lessen the effects of economic downturns and margin compression. Only 15 to take advanta
will improve merchant relationships prove merchant relationships
will im
w
while catching errant activities sooner hile catching errant activities sooner
to war
to ward off risk and fines, save d off risk and fines, save
money, increase productivity and y, increase productivity and
mone
e
effectiveness, and enhance top and ffectiveness, and enhance top and
bottom line portfolio revenues. ottom line portfolio revenues.
b
Ross Federgreen, CIPM, CIPP/US, CIPP/G, dergreen, CIPM, CIPP/US, CIPP/G,
Ross Fe
CIPP/E, and Fellow, European Privacy
CIPP/E, and Fellow, European Privacy
Association, is the founder of CSR, the
Association, is the founder of CSR, the
leading provider of global data compli-
leading provider of global data compli-
ance solutions and expert services that
ance solutions and expert services that
address Payment Card Industry (PCI) stan-
address Payment Card Industry (PCI) stan-
dards and personally identifiable informa-
dards and personally identifiable informa-
tion (PII) requirements. Ross can be reached
tion (PII) requirements. Ross can be reached
at rfedergreen@csrcorporate.com. For more
at rfedergreen@csrcorporate.com. For more
information, contact CSR at 866-462-7774
information, contact CSR at 866-462-7774
or online at www.csrcorporate.com.
or online at www.csrcorporate.com.
Ed Barton, CFA, CPA, JD, is the President
Ed Barton, CFA, CPA, JD, is the President
and COO of G2 Web Services, a leading
and COO of G2 Web Services, a leading
provider of payment risk management ser-
provider of payment risk management ser-
vices including merchant website monitoring
vices including merchant website monitoring
and merchant boarding risk analysis. Ed
and merchant boarding risk analysis. Ed
can be reached at ebarton@g2llc.com. For
can be reached at ebarton@g2llc.com. For
more information about G2 Web Services,
more information about G2 Web Services,
contact G2 at info@g2webservices.com or
contact G2 at info@g2webservices.com or
online at www.g2webservices.com.
online at www.g2webservices.com.
36
36
