Banks and payment facilitators working with PCI Checklist can share the merchant risks with their merchants through the PCI Checklist Panel.
If you are using the infrastructure of a bank or payment facilitator working with PCI Checklist, it is likely that you received an invitation link to view your risk report. Once you register to the system via the link, you can view your current risks and take the necessary measures.
You can watch the following video or read the blog for guidance.
1. Click Your Invitation Link
The link delivered to you by your bank or payment facilitator is unique for your use. The link looks like the following:
https://app.pcichecklist.com/login/ff8f565
When you click a valid link, you will come across a screen similar to the following:
If you already have a PCI Checklist account, you can directly log in; or click REGISTER to create one.
2. Register and Verify Your Account
Once you enter the information for registration and create your password, you need to verify your account from the verification e-mail delivered to you. You can do so by following the link in your e-mail.
You will receive the e-mail from “[email protected]”. In case you do not see the e-mail, please remember to check your spam box.
3. Log In
The first log in will welcome you with a page similar to the one below. You will only once choose your position in your company and access the panel.
4. Access Your Report
After you log in, you will be able to view the risk reports shared with you from the “Shared Reports” seciton on the left menu.
The reports contain the potential cyber security risks of your e-commerce site and recommended solution articles.
On the “Shared Reports” page, you can see which bank or payment facilitator (Shared by) shared the report with which Merchant (Assessed Company).
5. Read the Information Note
There is an “Information Note” section following the Content of the report that provides you with guidance with regard to the examination the report. We recommend you to read it and discuss it particulary with your technical teammates.
6. Share with Your Teammates
Development and management of today’s complex e-commerce infrastructure is a teamwork. Therefore, do not hesitate to share the report with your teammates. By clicking the “Team Share” button next to the “Report”, you can edit who else can see the reports.
You can always adjust sharing according to your current teammates and stop sharing for the ones who leave.
7. Manage Your PCI-DSS Compliance
There is a PCI-DSS Compliance section on the left menu, as demonstrated below. With this section, you can click the PCI-DSS Wizard to find out your PCI-DSS level and the correct Self-Assessment Questionnaire (SAQ) type accordingly.
Subsequently, you can fulfill the correct SAQ type from the Panel, share with your bank or payment facilitator; upload ASV and AoC reports. This helps you notice your compliance status, the period of validity of your compliance and receive reminders accordingly.