SecureSiteCommerce.ComPany

Requirement 4: Encrypt transmission of cardholder data across open, public networks

The next part of PCI compliance involves the transmission of cardholder data. The first portion of this states that a business must use strong encryption such as SSL/TLS or IPSEC. This applies to all transmissions that take place on the internet, wirelessly, using GSM, or using GPRS. Next, wireless data must use industry best practices, mainly IEEE 802.11i when transmitting cardholder data. Finally, never transmit PAN’s by end-user messaging means such as email or instant messaging.

Having an easy way for your customers to reach you from your online presence is important. Whether it is for inquiries about sales, questions about your product, or looking into an existing order, customers want to be able to reach you. Generally speaking they are also expecting a quick response due to the quick transfer of information that makes internet shopping appealing to begin with.

A good contact form is required on your website. This form should be setup to email someone who is getting their email regularly. From my experience I have been most impressed with internet contact responses measured in minutes or hours then in days. I think that holds true of most people using the internet. Keeping your email client open all day and setting aside some small chunks of time each day or responding as you get inquiries is a great habit that will make your customers happy to do business with you.