This Research Report from Merchant Warehouse provides the analysis and results of a yearly survey taken by the Payment Card Industry (PCI) compliance and security experts at ControlScan measuring Level 4 merchants’ engagement with the PCI Data Security Standard (DSS). The data is often used by payment industry professionals to gain insight into the data security and risk-related issues they should proactively address within this segment in the U.S.
Visa defines Level 4 merchants as those processing less than 20,000 Visa ecommerce transactions annually. Level 4 brick-and-mortar and other retailers are those that process up to 1 million Visa transactions annually. This survey found that these merchants are missing the point of the PCI DSS and are unaware of their vulnerability to data breaches. Awareness has remained stagnant for all Level 4 merchants, with little attention being paid to PCI compliance and data security as a critical, ongoing business process.
Survey results provided in this report show that forty-seven percent of respondents are “unsure” or “not at all” familiar with the PCI DSS, and Seventy-nine percent of respondents think there is little to no chance a data breach will happen to them.
To read the full results from this PCI DSS survey, including the PCI Gap between Ecommerce and Bring-and-Mortar stores, the PCI Gap between Larger Level 4 Merchants and Micro-Merchants, data breach occurrences among respondents, perceived level of risk of data compromise, and more, download this report below.