With the desire to be mobile an increasingly important part of the business landscape, the PCI Council released a guide for merchants to help ensure security and PCI compliance when accepting payments using mobile devices. "Limited security safeguards" caused the council to react with additional measures to protect consumer payment data on mobile devices.
The primary concern addressed by the council was securing data at the point of capture on the mobile device, regardless of whether the merchant uses a commercial product or builds their own solution to accept mobile payment. Both solutions should take into account additional encryption technology, the council recommends, including point-to-point encrpytion to reduce the chance of a data breach.
Mobile devices are becoming an increasingly common way for companies to receive payments, especially smaller merchants. An array of off-the-shelf products make implementing mobile payments a quick process that larger enterprises can take advantage of as well.
According to TNooz, the use of mobile payments can actually be more secure and help meet compliance standards. Many available protects offer data protection and allow for access to future electronic records for auditing or reporting purposes.
