Question

Why is PCI compliance companies emailing me? All my CC transactions are handled by e-invoices through Intuit.

Forum|Forum|2 years ago
November 20, 2023
3 replies
0 views

Why do I need to pay for PCI compliance through a third party when QB handles all my cc transactions and I don’t touch CC at all?

QuickBooks Online

I

IrizA

I understand the confusion you have about PCI compliance, ddb281. Let me explain and share some information about it.

In QuickBooks, merchants who process, handle, transmit, or store credit card data are required to be PCI compliant. The emails you're receiving from PCI aim to inform you about the necessary PCI compliance standards for merchant services.

While Intuit handles your credit card transactions through e-invoices, PCI compliance provides resources where merchants can obtain security and compliance services. It's important for all businesses that accept credit card payments to maintain PCI compliance to ensure the security of sensitive financial information.

Additionally, Intuit has partnered with SecurityMetrics, a leading PCI service provider, to help you meet the requirements. It's important to note that SecurityMetrics charges an annual fee to merchants validating compliance for Intuit.

You can visit this article to learn more about PCI compliance:

If you have further concerns or questions about PCI compliance and its relation to your specific situation with QuickBooks Online, please feel free to comment below. We're here to assist you.

W

wildworks

It seems ridiculous that we have to pay an ADDITIONAL fee to another company when we are paying for you to process these things. Is there a way for us to directly submit the SAQ form? (Otherwise, I will be discontinuing using Quickbooks as a payment platform. I am already using other 3rd party processors who do not harass me for this like Securitymetrics.) This seems like an undisclosed fee that you are requiring users to pay in order to utilize your services, unless there is another way for us to submit it.

R

ranceo

Someone please start a class action lawsuit against QuickBooks for this, and I will sign the list of people who have been scammed by this. Thanks

J

Just_me

According to QB own website & information, You don't have to go through the Compliance thing.

As stated STRAIGHT from QB, "Do you have to be PCI compliant with QuickBooks?

Merchants who process, handle, transmit, or store credit card data are required to be PCI compliant."

If you aren't the one that is processing the credit cards, then YOU don't have to be compliant. QB does. If you, for any reason, take credit cards at your location, then you would need to be compliant. IF you do need to be compliant, there are other companies you can use. IT would benefit you and your company to use a company that isn't involved with QB at all like Security Metrics is. They are horrible to deal with and are bullies.

We use a different company...

B

BLS4315

Can you share what company you do use, if not SecurityMetrics?

A

awasos

They are just trying to bully you into paying for services you don't need. If everything is handled through quickbooks online, then you are compliant and you don't need to pay for other services. I've attached QB Online PCI compliance attestation. Just provide their attestation if someone asks for proof of compliance. Here is the link as well: https://security.intuit.com/compliance/

Quickbooks-Online-PCI-compliance.pdf