A hands-on program, designed for business owners
Understanding your obligations and responsibilities to manage cardholder data can be complex. Our Merchant Trust Initiative (MTI) program is designed to simplify the process with a toolkit to enhance how you handle data security and meet your PCI compliance requirements.
SecureTrust PCI Manager
Your own security portal
Your MTI membership provides you with a suite of learning material, tools, and one-on-one support for your business to become PCI compliant. You will gain access to the SecureTrust PCI Manager tool – powered by Viking Cloud – which is packed with a range of features and tools to help your business attain PCI DSS compliance.
Protect your computers against cyber risks with automated vulnerability scanning. We’ll help you keep an eye on things when you don’t have the time to.
Endpoint protection is included in your MTI subscription and safeguards your hardware data against cybersecurity threats and viruses.
Help is available for the SecureTrust portal, completing your SAQ, or the included security tools.
Merchant Trust Initiative
Frequently Asked Questions
Read our most asked questions about our Merchant Trust Initiative program.
The Payment Card Industry Data Security Standard (PCI-DSS) was created to ensure a consistent set of standards for the processing, handling and storing of sensitive credit card information.
If you complete a yearly assessment of your PCI DSS status using a Self-Assessment Questionnaire (SAQ) accurately, and your assessment shows you have no outstanding actions, then you are PCI-DSS compliant. If you have a portal or e-commerce website, this will include providing evidence of quarterly vulnerability scans from a PCI-SSC approved scanning vendor.
We have partnered with SecureTrust – powered by Viking Cloud, who are global leaders in cyber security and PCI compliance programs to deliver the Merchant Trust Initiative.
Eway is a Level 1 PCI DSS compliant business. However, prior to any data being entered into our systems, merchants have an obligation to protect card information. This is part of the reason we have launched the Merchant Trust Initiative – to educate and increase knowledge around these obligations to ensure better cybersecurity and data protection practices.
Fines for PCI DSS non-compliance can range from $5,000 to $100,000 per month per violation.
Every business that handles cards, from major enterprises to the smallest businesses, regardless of their size or transaction volume, must ensure they are compliant with the requirements in the PCI DSS. Not doing so may result in suspension from processing cards from certain providers. By staying compliant with PCI DSS requirements, you can be confident that you are doing the right thing by your customers.
It is mandatory for all merchants who accept credit cards to be compliant with the PCI Data Security Standard, and this applies regardless of size or how they accept payments. This is not just limited to completing a Self-Assessment Questionnaire (SAQ), but requires a number of steps and regular scans to ensure obligations are met. This is where the Merchant Trust Initiative helps you simplify the steps within the process. If you are already able to show your compliance from another provider, or choose to opt out, click here. The form will outline your obligations as a customer of Eway, so please ensure you understand and meet all these requirements prior to opting out.
Each of the card schemes have rules that apply to different members of the supply chain within the payment card industry. The following list from each of the card scheme members outlines their specific rules.
- Visa MasterCard
- American Express
- Discover Financial Services
- JCB International
You will have 12 months to complete your certification using the SecureTrust PCI Manager.
More about cybersecurity
Discover more about how we’re safeguarding data for you and your customers.
Use authentication points to gain more data on a customer’s purchasing behaviour with 3DS 2.0. This allows you to more accurately authorise transactions and reduce the risk of fraud and chargebacks, while providing a faster checkout experience.
From real-time fraud detection to tokenised payments, our systems are designed to reduce risk and keep customer data secure.
Use our advanced fraud protection tools to monitor flagged payments, and reduce losses without blocking real customers.
Eway is certified as meeting level 1 of the PCI DSS compliance criteria, which is the highest level of compliance available. This is the same level of data security used by the biggest banks in the world.
We take the security of our systems seriously, and we value the security community. The disclosure of security vulnerabilities helps us ensure the security and privacy of our users.