Navigating PCI Compliance for YM Administators

In the world of association management, staying compliant with payment card industry (PCI) standards is crucial. As a YM administrator, you may find the quarterly PCI Compliance Assessments from CardPointe a bit daunting. Fear not! This quick guide will help you navigate the process with ease.

Understanding the Basics

First things first: YM and BluePay together create a Virtual Terminal system. This is a key piece of information that needs to be communicated to CardPointe during the assessment process. Many of the questions you'll encounter are designed with this setup in mind.

Key Points to Remember

  1. Document Repository: If you're using YM and BluePay for payment processing, you shouldn't need to upload any documents in the Document Repository area. This section is primarily for those not using the YM and BluePay system.
  2. External Vulnerability Scan: If you're prompted to pass a PCI DSS External Vulnerability Scan, it's time to update your business profile within the platform. This simple step can save you a lot of headaches down the line.
  3. Specific Questions: Don't be alarmed if you encounter questions about your business environment, card processing equipment, or whether you have a Qualified Security Assessor (QSA) or Internal Security Assessor (ISA). These questions often pop up when the Virtual Terminal setup hasn't been clearly communicated.
  4. Document Tab: This tab is specifically for merchants who use third-party service providers for compliance. If you're using the YM and BluePay Virtual Terminal, you likely won't need to use this feature.

Simplifying the Process

The PCI Compliance process can seem overwhelming, especially given the specialized language used in the payment processing world. However, by keeping these key points in mind, you can navigate the assessment more efficiently.

Remember, the goal of these assessments is to ensure the security of payment data. By properly communicating your setup and understanding the questions being asked, you're not just ticking boxes - you're actively contributing to a safer payment ecosystem.

Seeking Support

If you find yourself stuck or unsure at any point during the assessment, don't hesitate to reach out for support. Your organization's security is paramount, and there are experts available to guide you through the process.

PCI Compliance doesn't have to be a headache. By understanding your system setup, knowing what to expect from the assessment, and being prepared to communicate effectively with CardPointe, you can turn this quarterly task into a straightforward part of your routine.

Stay informed, stay prepared, and most importantly, stay compliant!

About the Author

Mary Bynum

Mary is a former YourMembership Implementation Specialist with 5 years of experience on the platform. Mary specializes in technical project implementation, integrations, and tailoring experiences.

Want more info on this topic?

We get it, not everything about a topic can be covered in one blog post. We would be happy to have a meeting to talk about what else you're struggling with. Please fill out the form below and we'll reach out!

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Our technology-focused Mission:

We give association leaders peace of mind.
We'll  help you hit your goals, manage your technology,
create value for your stakeholders, and advance your mission.

Contact Us

EMAIL: ymhelp@starkweather.us | PHONE: +1-608-338-5032  +44 020 3290 0325 | LOCATION: 7 N Pinckney St Suite 300, Madison, WI 53703

Resources

Privacy Statement | © Starkweather Association Services LLC, 2022

Need YM help?
Click here