Custom Search

PCI Compliance Requirements Retail Petroleum

Payment Security Required at Dispensers

Requires encryption when PIN information is entered

     • Must use PCI certified Encrypting PIN Pad capable of Triple-DES

encryption

– Triple-DES encryption keys required to be fully compliant

     • Retailers assume risk if using Single-DES encryption after July 2010

– PIN encryption must be done within the keypad

– Dispenser upgrade procedures vary by vendor

     • Keypads, electronics, displays, bezel panels, etc.

Here are your options:

– Upgrade dispensers with PCI Encrypting PIN Pads

– Install new TDES-capable PCI compliant fuel dispensers

– Require PIN debit customers to pay in store

– Do nothing now and stop accepting PIN debit as of July 1, 2010

– Assume risk of non-compliance / compromise liability for use of Single-DES DUKPT after the deadline

Compliance Timeline

Fuel Dispenser PCI Compliance Timeline

Visa mandating that all PIN accepting fuel dispensers comply with EPP standards to support Triple-DES migration.

PCI compliance information sourced from PEI \ NACS documents and presentations.

[Service Station Equipment Home] [How To] [Petro Vend] [Petroleum Equipment Products] [Verifone Topaz] [Verifone Ruby] [Fill Rite Transfer Pump] [PCI Compliance Dispensers]

E-mail info@servicestationequipmentsales.com

Copyright 2000 Service Station Equipment Sales

Not affiliated with Gilbarco, Tokheim, Dresser-Wayne, Verifone, OPW, Fillrite