Mobile Payments? Not so fast, says PCI Council

Patrick Turiano |

March 28, 2011

Just as the hype surrounding mobile payments heats up, the PCI Council has slammed the brakes on any such momentum.

The PCI Council, earlier this month, “delisted” a number of mobile applications, but will not specify which ones or how many. This comes as the Council strategizes around mobility and what will and will not be certified as being compliant.

Part of the problem, according to the PCI Council, is the maturity level of the cash register versus mobile devices. While both contain applications that operate their systems, there is technology that makes the cash register more secure, and storing data on a mobile device isn’t as proven and time tested.

So while the Council decides what approach to take, merchants and retailers are left to wonder how they are to approach their mobile strategies, which they see as allowing them to gain more profits as e-commerce, expected to reach $203 billion by the year 2014, according to an Inc. magazine article, becomes a more popular way of shopping.

Unfortunately, we’re all taking a wait-and-see attitude, but in the meantime there is technology on the side of the merchant that puts the power back in the mobile device.

Just this week Merchant Warehouse announced upgrades to its MerchantWARE TransPort platform. This solution is perfect for merchants in the e-commerce space as it off-loads the card processing function to a PCI DSS certified server. By removing the POS software or “shopping cart” out of PA-DSS scope, TransPort.Web allows the merchant to operate their online store within PCI DSS regulations without incurring any additional costs.

The Council is most likely to take some time finalizing its rules on this topic, and in the meantime all eyes will be watching their every move.