If your business accepts credit cards in person using a swipe device, then you need to know about EMV. Even if you don't accept credit cards in person, it's still a good idea to understand EMV and what all the hype is about.
What is EMV?
EMV stands for Europay, MasterCard and Visa and is a global standard for cards with computer chips and the technology to authenticate chip-card transactions. EMV is also known as chip-and-PIN cards. There is a push in the U.S. to migrate from traditional swipe credit cards to EMV chip cards by October 1, 2015. Retailers that choose to comply with the deadline must have all the hardware and software in place in order to avoid being on the hook for fraudulent transactions*. Not only are retailers focused on this deadline, but so are payment processors, hardware manufacturers, and software manufacturers, like us. The rush to be EMV ready has caused a shortage of pin pads that can process chip-and-PIN cards, which is why we recommend that you order the devices immediately. See details below.
ChargeLogic's EMV Plan
ChargeLogic's plan for EMV certification is to certify with the payment processors that: 1) the majority of our customers are using, and 2) have certification programs in place that apply to us. We can say definitively that we will support customers on NAV 2013 and up with our EMV certified product. Our goal is to be able to support NAV 3.6 and up, but we won't know if that is possible for another month. To be EMV ready, customers will have to upgrade to ChargeLogic 5.0, which we plan to release before October 1, 2015. Customers will also have to purchase the EMV granule for ChargeLogic Payments 5.0.
Pin Pad Shortage
ChargeLogic is certifying on the Verifone MX 915 and MX 925. We are finding that there is up to a six month wait to get the pin pads, specifically the tailgate, so we advise customers to order now and to be aware that they may not be able to get the pin pads by the October liability shift deadline.
We offer a service to order pin pads through us. We charge more than what you can find in the marketplace because we coordinate and manage all of the key injections. If you don't have experience with pin pads, you may want to consider ordering through us. If you are used to working with pin pads and are willing to coordinate all of the key injections and installation of forms, then you may want to consider shopping for the lowest price and managing the process yourself.
What does the October 1st deadline really mean for retailers?
The October liability shift puts the burden of liability for fraudulent transactions on the party least compliant with the latest technology. In other words, retailers that want to be EMV ready need to have EMV certified pin pads and software in order to avoid having to pay for certain fraudulent transactions* as of October 1, 2015.
What if a retailer isn't EMV ready by the October 1st deadline?
Retailers that aren't EMV ready by October 1st will be responsible for fraudulent transactions* that are processed using chip and pin cards. To be clear, fraudulent transactions and data breaches are different. A fraudulent transaction typically means that one person per fraudulent transaction used a stolen, compromised, or counterfeit credit card at an establishment. A small ice cream shop that knows its clientele and processes low cost transactions may be at a lower risk for fraudulent transactions than a big box electronic retailer. The ice cream shop may be less concerned with the October liability shift and may put off purchasing new hardware for six months, a year, or until necessary. Most big box retailers have already made the hardware investment and are EMV ready. EMV credit cards help to fight data breaches because they encrypt transaction data differently, making the cardholder data impossible to counterfeit. Your business may be somewhere in between an small, community ice cream shop and a big box retailer, so you will need to assess your risk and decide if you want to meet the October deadline or if you want to delay the inevitable.
*Merchants that are not EMV-ready by the October 1, 2015 liability shift are responsible for fraudulent transactions processed on chip and pin cards. If a card issuer provides cards that are not EMV-ready to customers and a fraudulent transaction occurs, then the card issuer may be responsible or share in the responsibility for the fraudulent charge.