TLS Update

The Payment Card Industry Data Security Standard (PCI DSS) 3.1 release will impact payment processing for your business. Depending on what version of point-of-sale or property management system you are running, you might have to upgrade your payment driver, or your POS/PMS software, or both, to remain compliant with PCI and continue processing transactions.

PCI Council released 3.1 to address critical vulnerabilities in the world of Information Security. Perhaps the most notable update was the exclusion of SSL as an acceptable method of encryption for PCI cardholder data, and the introduction of Transport Layer Security (TLS) as the “next generation” of internet security. TLS 1.2 is now the standard required for encryption for data being transmitted over the Internet.

Merchant Link and the payments industry are implementing this change to maintain compliance with PCI security regulations, which is an important step in keeping data secure.

Please be aware that during this process if you have a SHA1 certificate, you will need to update it to a SHA256 certificate. Merchant Link will work with you to determine if this is required.

You have our commitment that we will continue to communicate updates to you. Our goal is to ensure your business is not negatively impacted by this requirement.

If you have any questions, please reach out to your account manager.