|
Abacus
Business Solutions
With all the laws changing and increasing around credit
cards over the last couple years we wanted to take the
time to communicate to our customers that the PCI laws
are the customers responsibility to
compile with.
PCI capability
is broken down into 3 components
1. Software Version
2. Settings within the software
3. Infrastructure and security of your network
Verifying
your software version, and settings within your software
are CISP capable. Please remember the infrastructure
and security of your network is your responsibility,
but Abacus can also provide services to assist you with
the security of your network if you would like.
Is
your current version of Aloha CISP Compliant?
To
find out if your version of aloha meets the current
CISP/FACTA standards check your version to do so check
in the help section of aloha manager.
(In Aloha Manager go to Help > About and the version
and key number will be there)
5.3.14
and lower:
This version is no longer CISP compliant please contact
Aaron Guten at Ext.145 to assist you in upgrading your
version of Aloha
5.3.15
or higher:
This version is CISP capable
Please see our PCI Check List to verify that you have
properly set up Aloha.
Below
are the steps to ensure that Aloha is correctly set
up to meet the most current CISP/FACTA rules.
PCI Settings
1.
Credit Card Voucher Settings
a.
Show only the last 4 digits of credit card number on
Vouchers (guest and merchant)
i. Aloha Manager\Maintenance\Store Settings\Credit Card
– Voucher Printing Tab
1.
Credit Card Number Mask = Only last 4 digits
b.
Suppress expiration dates on Credit Card Vouchers
i.
Aloha Manager\Maintenance\Store Settings\Credit Card
– Voucher Printing Tab
1.
CHECK suppress expiration dates
2.
Eliminating Expiration Dates on reprinted guest
checks
a.
Aloha Manager\Maintenance\Payments\Tenders
i.
Go to the Type Tab and UNCHECK Print expiration
ii.
Do this for all Credit Card tenders
3.
Unique Logins for each manager for Aloha and
EDC
a.
Add each manager to Aloha Manager
i.
Aloha Manager\Maintenance\Labor\Employees
ii.
Give each manager the correct job codes (this is for
Front of House) and back office security (this is for
Aloha
manager and EDC)
iii.
Their log in will be their employee number and the first
time they log in they will need to enter their password
2 times (alpha or numeric but note it is case sensitive)
4.
Using Passwords and/or Mag Cards in Front of
house
There
are 2 ways of doing this.
1.
If must use mag card is checked – Maintenance\Labor\Employees
– Must use Mag Card is checked
2.
If must use mag card is unchecked
Must
Use mag card is checked
Log into the FOH under a manager number
Go to functions
Go to Employee
Clear Password
Highlight Employee name whose password needs to be changed
Click OK
Exit to floating Logo
Enter Employee number of employee that needs password
Error message may appear *your password has been cleared
by a manager
Enter employee number again
Enter password (Swipe card)
Reenter Password (swipe again)
Must
Use Mag Card is not checked
Log into the FOH under the employee number of the employee
that’s password/Mag Card needs to be added
Go to functions
Go to Employee
Go to Change Password
Enter password or Swipe card
**Note: If you swipe the card you can still get in under
the employee number, or you can now check must use Mag
Card in Aloha Manager under Employee maintenance**
Screen will prompt to re-enter password
Enter a password or Swipe Card again
Exit to floating Logo
Swipe card to test (bottom right corner will show who
is logged into the terminal)
Exit to Floating Logo
Enter employee number + Password
*Note: if the employee number is 3 digits and in the
BOH security it is set to 4-digit number you will have
to put 0+Number+password
5. Anti Virus Software Not up to date
a.
Please call Abacus at 727-524-0177 ext. 4
6.
Disabling Manual Entry of Credit Cards from
FOH
a.
Aloha Manager\Maintenance\Payments\Tenders
i.
Go to all Credit Card tenders and press the Type tab
and on the right side flag Use Magnetic Card Only
b.
Aloha Manager\Labor\Access Levels
i.
Go to all access levels to that you WANT to be able
to manually enter Credit Cards and press the Financial
Tab and in the right column CHECK Manual Card #
ii.
Go to all access levels that you DON’T want to
manually enter card numbers and press the Financial
Tab UNCHECK
Manual Card # if it is checked.
7.
If you are Using Wireless Devices on your network
(this includes wireless internet)
a.
Please go to the following link to read the brief and
make sure you are following the recommended setup. http://usa.visa.com/download/merchants/20071005_datasecurityalert_wireless.pdf
8.
Connecting to your system remotely
a.
Each person should have a unique user name and password
to connect to your computer
b.
If you are using PC Anywhere this should not be left
in waiting. It should be put in waiting when someone
needs
to connect to your computer
PCI
Final Acceptance Form
Please
print and fax back to Abacus 727-524-0188
|
