PCI 3.0 JavaScript Tag

Last updated
Save as PDF

Our solution adds a JavaScript tag onto your cardholder data collection page(s). The insertion of this tag effectively removes your business from the cardholder data collection process by forcing submitted consumer data directly to Aria's servers.

Overview

The Payment Card Industry (PCI) Data Security Standard (DSS) is an information security standard defined by the Payment Card Industry Security Standards Council.

PCI certification is required for merchants and service providers that process credit card payments. The certification is designed to prevent credit card fraud through increased controls over data and its exposure to compromise. The standard applies to all organizations which hold, process, or exchange cardholder information from certain types of payment cards.

Updated PCI Guidelines

PCI Data Security Standards specify that any ecommerce merchant with a website(s) that does not receive cardholder data but which affects the security of a payment transaction and/or the integrity of the page that accepts the consumer's cardholder data, must now meet specific PCI requirements.

This applies to ecommerce merchants who partially outsource their ecommerce payment channel to PCI DSS validated third-parties, like Aria Systems, and do not electronically store, process, or transmit any cardholder data on their systems or premises.

To prevent your business from having to meet these PCI requirements, Aria offers an optional solution that prevents you from having to go through the process of becoming PCI compliant.

About the Solution

By doing this, Aria ensures that your business does not have the ability to affect the security and integrity of cardholder data during the payment submission process. Since Aria is PCI DSS Level 1 certified, this helps to keep your business in compliance.