Search Resultsreciprocity

MasterCard/Visa Remove Reciprocity standard

...eciprocity statements from their level definitions. Discover still has the reciprocity statement on their levels, American Express and JCB never used reciprocity for their level definitions (to my best recollection). Several industry insiders have been told that it was never the intent of MasterCard to force a merchant that accepts a single JCB card to go through an on-site assessment if they did not meet the MasterCard threshold. Now it appears t...

Continue Reading

The Best of 2009 standard

...details changes made on payment brand websites that appear to remove level reciprocity on merchants. MasterCard updated its stance since this post and now only shows reciprocity with Visa (externally), though it is unclear if the operating regulations match what is available for public consumption. Regardless of your level, most acquirers (or acquiring functions of payment brands) will accept an on-site assessment performed by a QSA in lieu of a S...

Continue Reading

Level 2 Merchants, Are Your Folks Trained? standard

...to the retraction and strange website posts and commentary by MasterCard, reciprocity was a hotly debated issue. As of this writing, the reciprocity on MasterCard’s website is with Visa ONLY. This really makes the most sense1, and I believe was MasterCard’s true intent. The reality is that most card brands don’t expect you to do both a Report on Compliance (ROC) AND a Self-Assessment Questionnaire (SAQ). If you have to fulfill t...

Continue Reading

October 2009 Roundup standard

...re are the five most popular posts from last month: MasterCard/Visa Remove Reciprocity. This post details changes made on payment brand websites that appear to remove level reciprocity on merchants. Regardless of your level, most acquirers (or acquiring functions of payment brands) will accept a higher level of validation. You should not be forced to complete a ROC and SAQ, submitting only a ROC should suffice. The Problem with Logging. Which kind...

Continue Reading

MasterCard’s Got Its Flippy-Floppies standard

...nd publicly are aligning its levels directly with Visa—including setting reciprocity with their levels. The reason I put “publicly” in there is because the merchant operating regulations are NOT public for MasterCard like they are with Visa, but I understand that level reciprocity remains in those regulations even though they were removed from the public facing information. Crow, by Marko K This is why merchants and service providers a...

Continue Reading

The Final Word on MasterCard’s New Levels standard

...that even though American Express Level 2 merchants would technically have reciprocity with MasterCard, they are not requiring their Level 2 merchants to go through this process. Parts of this may not be as relevant to some Level 1 merchants, after Visa clarified their expectations of what makes up a Level 1 merchant earlier this year. If you are a Level 1 merchant in one country or region, and are also a merchant of a lesser level elsewhere in th...

Continue Reading

MasterCard Clarifies their Position standard

...sment even if I only accept 10,000 MasterCard transactions annually? Level reciprocity is also clouded with American Express’s merchant levels… 50K transactions puts you at a Level 2. According to the document, MasterCard originally communicated the new levels and program changes on June 15 (2 days prior to me posting about it), but only to Acquirers and Processors. So this whole cluster begs the question… Did MasterCard learn an...

Continue Reading

Subscriptions Deal with Transactions Times Twelve standard

...you become a Level 4 for more than one payment brand (let’s not talk reciprocity here)! The point is that you have it in your power to offer incentives to “game the system” in order to change the pressure put upon you to comply with PCI DSS. I am still a firm believer that it is a good standard, though you would be better suited to implement a control framework like ISO 27002 and map your compliance back to it. Regardless, you ha...

Continue Reading

Visa Allows Non-US EMV Merchants to forego PCI Assessments standard

...ou accept MasterCard or Discover transactions? You may be subject to reciprocity rules and you would still need to validate. What if you accept enough American Express or JCB transactions to qualify for an annual assessment? Still need to do it. My guess is this is one way for Visa to save face with the global community after announcing global fines which theoretically should have started last October. Update: Added specific distinctions between V...

Continue Reading

This is a unique website which will require a more modern browser to work!

Please upgrade today!