Hi all,
With the upcoming EMV changes that WorldPay announced a while back, we need to replace our existing Vx805 devices. We'll probably use this opportunity to purchase P2PE capable devices and enable P2PE for security and the lighter PCI compliance load. Any organizations have advice they would offer on enabling P2PE? What changes did you and your staff make to your workflow for entering credit card information, especially over the phone or for forms received in the mail? What issues did you have to overcome while working remotely during the pandemic? Did you run into any issues configuring and installing your devices?
Thanks in advance!
Jeff W
Hi Jeff, We're on Windcave, so I can't comment on compatible devices. We have P2PE active and required on all devices here. For the back of house, that means that every possible entry point, including development, call center, etc. need an EMV terminal on their computer. You can still take call-in or written card information, but it needs to be keyed into the device and not directly into Tessitura. If you're using TRBO, this will apply as well - you'll need separate (non-swipe) EMV devices to to take cards. For the pandemic, we required people to come into the office to process cards; we didn't want the risk of having the card readers or the card data offsite. For additional security, we have strict enter and shred policies for all written cards received. Finally, we have all the P2PE devices on a separate subnet that can only talk to the card processor, for extra security. Happy to dive in further if I can be of help - zhaines@mfah.org Zac
Thanks, Zac! This is helpful - I really appreciate it.