Question

Why is Intuit forcing us to be PCI compliant?

Forum|Forum|2 years ago
July 11, 2023
16 replies
0 views

Why is Intuit, a company we pay thousands upon thousands of dollars per year in fees with, now forcing my small business to pay additional yearly fees to become PCI compliant? We don't handle our customer's credit card information. This is a huge misstep by Intuit. At a minimum, Intuit should pay the yearly fee for compliance if they are going to force this upon us.

QuickBooks Online

J

Just_me

They are insisting on passing the charges on to the customers that use them for payments.

It makes sense to them to make money off the deal.

S

SarahannC

Hello there, HunterF.

I see that you expect Intuit to take responsibility for the fees since you already invest the amount in our services. I acknowledge your concerns regarding PCI compliance and the additional fees associated with it.

The purpose of PCI compliance is to protect cardholder data from security breaches and to maintain the trust and security of the overall payment.

If you have any concerns or inquiries about Intuit's policies and the fees related to PCI compliance, I suggest reaching out to our QuickBooks Payments Support Team. To do so, please log in to your QBO account, click on the Help menu, and select Contact us for further assistance.

Additionally, you'll want to check this article for more details: Learn about the QuickBooks Payment Card Industry Data Security Standard (PCI DSS) compliance.

You can always post your concerns here if you have more questions about QuickBooks PCI Service. I'll be around whenever you need assistance.

G

gillyspnr

But the QuickBooks customers don't actually get their customers credit card information, QuickBooks does. Why does that fall on QuickBooks customers? Shouldn't we already be PCI compliant by using QuickBooks? Is this also saying that QuickBooks isn't covered under any type of insurance? If credit card information is stolen through Quickbooks, isn't that on Quickbooks?

Rubielyn_J

Thank you for bringing up your concerns about credit card information and PCI compliance while using QuickBooks, Gill.

I completely understand the importance of security and the responsibility that lies with QuickBooks and its users.

Regarding your inquiry, it's important to note that QuickBooks applications themselves maintain a high level of security. However, the security of your overall environment can be influenced by other applications used in conjunction with QuickBooks. As for the use of QuickBooks Payments services, it's essential to understand that merely utilizing these services does not automatically make you PCI compliant. It's also crucial to recognize that as a merchant, you hold the responsibility of safeguarding payment card information and adhering to PCI compliance requirements.

Moreover, Intuit has collaborated with SecurityMetrics, a prominent PCI service provider, to assist you in meeting the necessary requirements. Along with the PCI Compliance from SecurityMetrics, Intuit also provides breach forgiveness. It has a coverage of up to $50,000 ($0 deductible, $0 co-pay) to pay for audits, fines, or other expenses associated with a breach.

If you have further concerns, I suggest contacting PCI support. They are more equipped

Moreover, I'll be sharing the following articles to learn about the QuickBooks Payment Card Industry Data Security Standard (PCI DSS) compliance:

Should you have any further concerns about PCI compliance, please don't hesitate to share them with me. I'm here to assist you and ensure you have a clear understanding of these matters.

J

junwin

To squeeze more money out of us - I thought the email was a scam at first since the whole reason I use QB payments is to avoid handling consumers credit cards numbers! and you are only *recommended* to be PCI compliant if you store the card details

L

lilavalv

I also wondered why I kept getting these emails because I don't ever touch any customer credit cards or store. We already pay an exorbitant amount of money for Intuit Service for the little we get from them. Ridiculous!

J

junwin

This is what they(quickbooks chat/help) told me:

the PCI compliance email notice was generated by our back-end staff and it's a legitimate email notice. This is an additional protection for your QuickBooks Payments account and a heads up that it's an optional for you to sign up. Since your current QuickBooks Payments account is PCI compliant. You may disregard the email notice.

That said from my point of view given they are asking you to pay for service you don't actually need - its bad form.

F

FFLB

Junwin, I’m curious to hear what this platforms moderator thinks of that! I’m not paying for this money grab.

J

junwin

It would be good to hear what the moderator or a QB employee had so say - but it does not look like they are monitoring this.

R

RPFdog

Thanks for asking the question! Seriously just thought I was getting spammed, can’t believe it was actually real. I feel better seeing how many others are confused and irritated by this.

M

Marine vet

This is a shakedown. So I pay for QBO, pay for a QB payment account, and I buy a QB card scanner and then they want me to pay a random company, they are in bed with that can hardly explain in simple terms what it is they do??? Their equipment is supposed to be PCI compliant. We aren't required to use QB payments or their equipment. I am not paying for anything else. I am not paying for this and neither should anyone else.

S

Stubby1

Looks like I will be accepting cash and checks, only

Check Junwin’s post.

This is straight off the Quickbooks payment site.

"If you are a merchant who stores, transmits, or processes Visa, MasterCard, American Express, Discover, and JCB payment card information, you need to be PCI compliant. With QuickBooks, your PCI compliance is ensured. And all of your security needs are up to date."

Hmm... sounds like Security Metrics is a huge marketing campaign.

L

LBenware

Where did you find this at? Seems they may have taken it down.

C

CB117

This looks like another money making scheme by Intuit!

J

jpulizzi3

I wonder if anyone has their legal team reviewing this requirement? My legal team (me and whatever free online resource I can manage to find) was not able to learn much of anything in our exhaustive search. This just feels like a shake down.

Show more replies

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded