General Best Practices
Payment processing best practices should be built on:
- Qualifying and getting the lowest interchange rate
- Preventing chargebacks
- Winning representments
These fundamental approaches outline how you can use card-not-present fundamentals to save money, reduce risk, and improve operational efficiency when processing digital and direct payments.
Presenting Information
Focus on providing clarity for consumers when you present transactional information to them including:
- Contact information should be clearly displayed on every page of a catalog or web store
- Billing descriptors should be recognizable to the customers
- Email confirmations should be sent immediately whenever an order or refund is processed.
- Policies, terms, and conditions should be posted clearly
Gathering Cardholder Information
To help reduce fraud make sure you collect several pieces of cardholder information including:
- Customer contact information such as phone number, email address, and billing address
- Card information such as the name on the card, the account number, and the card type
- Adding additional protection such as "Verified by Visa" or MasterCard's "SecureCode"
Processing Orders
Observing key rules can reduce your exposure to chargebacks and result in lower interchange fees. Some of these rules are:
- Conducting Address Verification System check
- Using a "Zero Dollar Verification"
- Shipping within 7 days of the authorization
- Submitting your deposits to your processor within 2 days of shipment
For more detailed information on general best practices download our eBook.
Negative Option Marketing
Do your customers consent in advance to purchase recurring prodcuts and/or services? If you use this type of marketing known as negative option marketing, via ecommerce, you are continually on the radar of lawmakers and government.
Here are some practical approaches to follow when using negative option marketing:
- You must be able to substantiate any performance claims shown on your website.
- Images and endorsements of celebrities are prohibited without their express written consent.
- You must not create a false sense of urgency for purchase.
- Terms must be at least 12 point font (or the same size as all the other font on the payment page).
- Terms must be clearly disclosed on the payment page.
- There must be a "Contact Us" link on the website including toll free number, email address, and hours of operation.
- CVV and AVS must be implemented
- The terms and conditions of the up-sell must be clearly displayed.
- You cannot capture the deposit transaction until the product has shipped.
- Shipping should occur within 48 hours of purchase.
For more detailed information on Negative Option Marketing download our eBook.
Tokenization
Data breaches are occurring more frequently than ever. Data thieves don't discriminate. Both merchants and processors, regardless of size are victims. Most victims are PCI compliant, proving that such compliance doens't provide guarantees. New technologies are emerging that, when combined with other PCI approaches and standards significantly bolster data security while lowering costs.
PCI
PCI has been promoted by the card brands and industry as the leading defense against card data breaches. Compliance, however, is costly, time consuming, and unfortunately does not limit the merchant's liability. Given the number of data breaches in PCI compliant businesses, firms are looking to augment their protection.
End-to-End Encryption (E2EE)
E2EE is a methodology that addresses security when the card data is in transit or at rest. PCI compliant companies employ some level of E2EE as they are required to encrypt the data during transmission and "protect" it when it is stored. Most often this protection is in the form of encryption. In this scenario, the data has to be decrpyted for processing and encrypted before being stored or transmitted. E2EE provides point-to-point security but has some vlunerability when the data point is decrypted.
Tokenization
Tokenization is a methodology that addresses when the card data is in transit, at rest, and while in use. Tokenization replaces card account information with "tokens" generated by a third-party service provider. In this manner, the merchant is not required to store any card data. The additional security afforded during tokenization usually means it is a more secure solution for merchants.
For more detailed information on Tokenization download our eBook.
Advanced Authorization Services
Over the last decade major card brands have introduced many new products targeting specific population demographics. Well-known examples include rewards cards, prepaid cards, and gift cards. These product lines have introduced significantly more data elements into the payment stream. The flood of new data creates challenges and opportunities in managing authorizations for sustained and growing profitability.
Processing platforms that are capable of passing the data in the authorization response enable their merchants to implement better merchandising strategies, prevent customer churn, and increase revenue. Three specific data sets that can have an immediate impact on your business are:
-
Affluence indicators denote two levels of affluence to payment processors
- "Mass Affluent" - cardholders with an income greater than $100K
- "Affluent" - cardholders with an income greater than $100K, who spend more than $40K per year on the card
- Prepaid indicators identify the card as prepaid. Non-reloadable Visa and MasterCard prepaid cards also return the available balance.
- Account updater services allow merchants to submit card data on file to the networks for updating and correcting stale information. Updater services have emerged that offer account updating as an automated, managed service resulting in faster, more secure and more efficient processing.
For more detailed information on Advanced Authorization Services download our eBook.
PCI Data Security Standard
The Payment Card Industry Data Security Standard (PCI) is a standard across the major global card brands- Visa, MasterCard, American Express, Discover and JCB to address cardholder account security. PCI was developed to safeguard the personal information of cardholders while in the possession or use of merchants, payment processors and other entities that store, process, or transmit payment card information.
Understanding the basics of PCI, defining your merchant level, and understanding validation requirements are critical. Failure to adhere to these requirements may result in significant fines for merchants and potential cancellation of your merchant accounts by the payment brands.
The Basics of PCI
PCI is a series of security requirements for all companies that handle cardholder information. The following is a high-level list of some of the current PCI "Control Objectives:"
- Install and maintain a firewall configuration to protect cardholder data
- Encrypt transmissions of cardholder data and sensitive information across public networks
- Use and regularly update anti-virus and software on systems subject to attack
- Restrict access to data on a need-to-know basis
- Track and monitor all acces to network resources and cardholder data
Merchants may be subject to potential fines from the card brands of up to $500,000 per incident if compromised and not PCI-compliant at the time of breach.
For more detailed information on PCI Data Security Standard download our eBook or visit: http://www.litle.com/resources/pci-other-compliance
Card Security Checks
To help reduce fraud for CNP transactions, the major credit card companies implemented authentication systems to ascertain if the credit card used in a transaction is actually in possession of the owner. Knowledge of the card security value proves that the purchaser has seen the card or has seen a record made by somebody who saw the card. In many countries it is now mandatory to provide this code when the cardholder is not present during the transaction.
What are card security values?
Major card brands put these three or four digit codes on the front or back of credit cards. When collected, submitted, and substantiated during the authorization process the security value significantly increases the probability that the person placing the order is in possession of the credit card. In combination with AVS check the card security value is a useful tool to minimize fraud from stolen card numbers and counterfeit cards.
How do card security values work?
- You ask the customer for the card security code and send it to your processor as part of the authorization request.
- The processor, working with the card brands, checks the code against the card issuer's database to determine its validty and then sends a response code back to the merchant along with authorization.
- You must evaluate the response code taking into account the authorization decision and any other relevant or questionable data.
For more detailed information on card security checks download our eBook.
Address Verification Service
Address verification service (AVS) is an automated fraud prevention service designed to reduce the risk associated with card-not-present transactions.
AVS helps to minimize fraud by verifying the cardholder's billing address with the card issuer. The merchant must initaite the AVS check by providing the proper data in each transaction. Verification results help the merchant decide whether to accept a particular order or take follow-up action.
How to Use AVS
Address Verification is transparent to your customer and applies to payments using Visa, MasterCard, American Express, and Discover Cards. To use AVS you should:
- Ask the customer for the billing address as it appears on their monthly statement
- Submit the required alpha/numeric portions of the address with the authorization request
- Research all AVS partial matches
- Evaluate AVS no match responses
AVS is one way to remedy many "Unauthorized Use" and "Non-Receipt of Merchandise" chargebacks. Without a positive AVS response, CNP merchants have no dispute rights. AVS is not foolproof and should be combined with your internal and external fraud detection tools.
Fore more detailed information on address verification service download our eBook.
Payments Radio
filler
Practical Payments
none
Reporting & Analytics Dashboard Thank You
Filler
Reporting & Analytics Dashboard (RAD)
Filler
Testimonials
FIller
Privacy Policy
As a leader in Card-Not-Present payment processing, Litle & Co.’s (“Litle”) privacy and security sit atop our priority list, and that includes protecting the privacy of users of this website. This policy provides you the details of how we collect and use information on www.litle.com and all Litle owned and affiliated web pages. We may amend this policy from time to time in our sole discretion.
Information We Collect
We collect information on this site in three ways: 1) via our online forms, 2) through website browsing activity or 3) on our Merchant Care site. All information collected is secured on our servers and used only by those who have a need to know the information.
Our Online Forms:
Our online forms are intended for business use only, and we only collect the information you voluntarily provide us. These forms primarily collect names, phone numbers, your organization’s information and URL, email addresses, and comments. We will never have any information about you, your colleagues, or your company via this website that was not voluntary submitted by you or someone at your company. Any information submitted via our online forms that looks suspicious in any way will be promptly deleted by our website administrator.
Website Activity:
The Litle site may use cookies and/or website traffic analytics to track browsing behavior, but it will never identify you personally unless you provide personal information to us via our online forms as mentioned above. Analytics this website gathers typically encompass information like page visits, browsing time, IP addresses, and time and date stamps. Most of this data is aggregated when examined.
Merchant Care:
Use of Litle’s Merchant Care site (“Merchant Care”) is restricted to Litle’s own customers. Merchant Care is a secure login-only site where our customers can find valuable information regarding our business and the services we provide them. With respect to customers using Merchant Care, Litle securely stores usernames and passwords, email addresses, company information, document download numbers, customer support requests and other relevant information that helps Litle serve its customers. Merchant Care may also use cookies and traffic analytics in the same manner described in the above paragraph entitled “Website Activity” and “Our Online Forms.”
How We Use Information Collected on this Site
We use information you voluntarily provide to us via online forms and Merchant Care for advertising, to develop sales leads, and better serve our customers. Otherwise, we use information on site activity for gathering and aggregating data internally to better understand how users interact with this site. We may disclose information gathered to vendors who work with us on optimizing this site, but any such shared information will be held in the strictest confidence at all times. We will not disclose any information to any other third parties unless required to do so by law or regulation.
Links to Other Sites
This Privacy Policy only applies to www.litle.com and its affiliated pages. Any links contained in this site that navigate you away from this site are not covered under this Privacy Policy and you should review each individual website’s policy. Litle provides such links at your convenience for informational purposes only and you visit them at your own risk.
Litle’s Commitment to Privacy
Litle is committed to protecting the privacy of users of this site. This site is intended for users over the age of 18, and Litle will never knowingly collect information about those under 18. Any information known to belong to those under the age of 18 shall be promptly removed from our systems.
Unless you have voluntarily provided us information via this site, we will not contact you or possess any personally identifiable information about you. If you have any concerns regarding this policy or the information collected via this site please email .(JavaScript must be enabled to view this email address). We will promptly investigate any privacy issue and take appropriate measures to secure and/or remove your data if necessary. Please refer to this site’s Terms of Use for additional information.
Thank You
Filler
Merchant Care Test Index
Filler
MICROS-Retail
.
Details F.A.Q.
filler content
F.A.Q.
Filler, not used
Litle Client Conference 2011
Filler content
Details
generic content
Payments Grader
Filler
Ecometry | Webinar
This is filler
Ecometry
Filler
Communications
Just filler - Not used
Reference Items
Filler content - Not used
Merchant Care
Filler body - Not used
Thank You
Thank you
Litle Client Conference 2011
Just a body text. Not used
PCI Levels & Requirements
How do I become compliant?
Step 1: Determine your Level
| Merchant Level | Criteria | Onsite Security Assessment | Self-Assessment Questionnaire | Network Vulnerability Scan |
|---|---|---|---|---|
| 1 | At least 6 million transactions annually from any acceptance channel for Visa, MasterCard or Discover | Required Annually | N/A | Required Quarterly |
| 2 | 1 million to 6 million transactions annually from any acceptance channel for Visa, MasterCard or Discover | At Merchant Discretion* | Required Annually* | Required Quarterly |
| 3 | 20k to 1 million ecommerce transactions annually from any acceptance channel for Visa, MasterCard or Discover | N/A | Required Annually | Required Quarterly |
| 4 | Less than 20k ecommerce annually or less than 1 million transactions from any acceptance channel for Visa, MasterCard or Discover | N/A | Required Annually | Required Quarterly |
| Service Provider Level | Criteria | Onsite Security Assessment | Self-Assessment Questionnaire | Network Vulnerability Scan |
|---|---|---|---|---|
| 1 | More than 300,000 transactions annually for Visa or MC | Required Annually | N/A | Required Quarterly |
| 2 | 300,000 or less transactions annually for Visa or MC | N/A | Required Annually (SAQ – D) | Required Quarterly |
*Effective 30 June 2012, Level 2 merchants that choose to complete an annual self-assessment questionnaire must ensure that staff engaged in the self-assessment attend PCI SSC-offered merchant training programs and pass any associated PCI SSC accreditation program annually in order to continue the option of self-assessment for compliance validation. Alternatively, Level 2 merchants may, at their own discretion, complete an annual onsite assessment conducted by a PCI SSC approved QSA rather than complete an annual self-assessment questionnaire.
Step 2: Identify your validation type, determine which Self Assessment Questionnaire is appropriate for your business, and complete the SAQ.
| SAQ | Description |
|---|---|
| A | Card-not-present (e-commerce or mail/telephone-order) merchants, all cardholder data functions outsourced. This would never apply to face-to-face merchants. |
| B | Imprint-only merchants with no electronic cardholder data storage, or standalone, dial-out terminal merchants with no electronic cardholder data storage. |
| C-VT | Merchants using only web-based virtual terminals, no electronic cardholder data storage. |
| C | Merchant with payment application systems connected to the internet, no cardholder data storage. |
| D | All other merchants not included in descriptions for SAQ types A through C above, and all service providers defined by payment brand as eligible to complete an SAQ. |
Step 3: Complete and obtain evidence of passing vulnerability scan with a PCI SSC Approved Scanning Vendor (ASV). It is required for Validation Type 4 and 5 – those merchants with external facing IP addresses. You can find a Qualified Security Assessor and Approved Scanning Vendor (ASV) at https://www.pcisecuritystandards.org/
Security F.A.Q
General Information
Your Compliance Classification Level and What it Means
Data Storage Protocol
Approved Software and Applications
To access this list of card processing software programs visit: https://www.pcisecuritystandards.org/approved_companies_providers/vpa_agreement.php
Steps You Should be Taking
Penalties for Non-compliance
Other PCI Compliance Resources
Webinars
Below are Litle & Co.'s webinars
Sitemap
<?xml version="1.0" encoding="UTF-8"?>Sitemap
Sitemap body filler
Interchange Management
Every merchant wants to know: "How can I save money on credit card processing?" First and foremost it is important you clearly understand where all of your charges are coming from. The three components of Visa and MasterCard processing pricing in the U.S. are: interchange, assesment, and processing charges.
Interchange is a fee mandated by Visa and MasterCard, which your acquiring bank pays to the card issuing bank on each sales transaction. Interchange was developed as an income incentive for banks to issue MasterCard and Visa cards. Today, there are hundreds of distinct rates based on transaction and industry type. Interchange typically represents the largest portion of a merchant's total fees.
Assessments are paid directly to Visa and MasterCard and typically offset the brands' costs to operate and regulate the networks. These fees are also passed along in some form to the merchant.
In addition to interchange and assessment fees, payment processors will also charge a processing fee for sponsoring you into the Visa and MasterCard networks.
Fee Structures. Be sure you understand how your payment processor is structuring your payment processing costs. Many processors use a bundled "discount" rate, presenting the merchant with a flat percentage rate blending all of the aforementioned fees. While simple to understand this type of pricing effectively hides the true cost of doing business from the merchant. Some processors offer a "pass-through" model also known as the "Cost Plus" model, reporting on all of the components as separate fees. While more complex, this style of billing is transparent and essential for reducing downgrades and optimizing interchange.
For more detailed information on interchange, assessments, and fee structure download our eBook.
Recurring Payments
Annual consumer spending through recurring payments is consistently growing. Embracing recurring payment models makes products more affordable and can generate larger, more predictable cash flows.
Recurring Payments are used when a consumer agrees to pay for a product or a service at specific intervals over a certain period of time. The recurrence may be fixed with pre-determined renewal periods or perpetual occuring monthly, quarterly, or annually.
Installment Billing plans are popular recurring payment options. On these plans, the period is fixed and the payments are typically identical. Payments are generally made monthly, with between 3 and 10 installments. Becuase the payments are smaller, merchants can sell more products with fewer chargebacks.
Soft Billing Descriptors are line items that appear on cardholder statements describing their purchases. Unlike static billing descriptors, soft billing descriptors allow the merchant descriptor information to be modified on a per transaction basis. Soft billing descriptors allow you to more clearly identify transactions and have proven to reduce chargebacks and improve customer satisfaction.
Important Tips for Processing Recurring Payments
- Ask the cardholder for his/her billing address as it appears on their statement
- Provide cardholders with a toll-free phone number to cancel services
- Process credits promptly
- Require cardholders to "Accept" terms and conditions
- Use soft billing descriptors to help cardholders identify charges
For more detailed information on recurring payments, installment billing, and soft billing descriptors download our eBook.
Chargebacks
Chargebacks are an unfortunate fact of life for card-not-present merchants, occurring when a customer disputes a charge on a card. The customer contacts his/her card issuer and initiates the process through the merchant's payment processor. Your processor will charge you a fee for each chargeback you receive. You have the right to fight the dispute in a process called representment, where you must substantiate the charge by providing verification of sale, if you cannot substantiate the sale you will have to reimburse the customer.
The 3 most common reasons for chargebacks are:
- Unauthorized Use- customers claim their cards were used without their knowledge or permission. Asking the customer for additional information at the time of purchase can greatly reduce this form of chargeback.
- Authorization Not Obtained- when the card issuers believe that a valid authorization was not obtained for a deposit. This type of chargeback occurs when multiple partial deposits are made against single authorizations.
- Recurring Transactions- chargebacks occur when a consumer believes they have been billed after cancelling a subscription, membership, or multi-payment billing series. Using clear and explicit billing descriptors will help you avoid these types of chargebacks.
For more detailed information on how to avoid chargebacks download our eBook.
Terms of Use
Terms of Use
By using a Litle & Co. (“Litle”) site, you are deemed to have agreed to all terms, conditions, use, and notices contained or referenced herein ("Terms "). Litle & Co. reserves its right, at its sole discretion, to update or revise these Terms without notice to you. You should check these Terms periodically for changes. By using a Litle site after Litle posts any changes to these Terms, you agree to accept those changes, whether or not you have reviewed them. Unauthorized use of Litle sites may give rise to civil and/or criminal actions against you.
Scope of Use
These Terms apply to your use of all of the sites and services owned or operated by Litle and affiliated companies. Unless Litle represents otherwise, all references to the Litle sites in these Terms include all such sites. These Terms do not apply to your use of unaffiliated sites to which any of the Litle sites only links and does not host on its servers.
Restrictions on Use of Materials
The information of this site and any other Litle site is protected by copyright and trademark laws and regulations and is the sole property of Litle Materials, information, and other content (“Content”) located within Litle sites may be accessed only for your business's use. You agree not to sell, license, rent, modify, distribute, copy, reproduce, transmit, publicly display, publicly perform, publish, adapt, edit or create works from this Content or in any way exploit the Content of a Litle site. This means you may download copies of posted materials for business use only, so long as you neither change nor delete any author attribution, trademark, legend or copyright or other proprietary notices or Content. When you download copyrighted material, you do not obtain any ownership or licensing rights to that material. Except for in connection with the business use mentioned above, reproduction, copying, or redistribution of any material within a Litle site is strictly prohibited without the express written permission of Litle You also may not, without Litle permission, "mirror" any materials contained within any Litle site or any other Litle service. Any unauthorized use of any material contained within any Litle site may violate copyright laws, trademark laws, the laws of privacy and publicity, and communications regulations and statutes.
Products
The Content as well as the products and services described within Litle websites are subject to change. Not all products and services are available in all geographic areas. Your eligibility for particular products or services is subject to determination by and approval of Litle and/or affiliated companies.
Links and Hyperlinks
These Terms apply only to users of the Litle sites, and not to the sites of any other companies or organizations, including those to which any of the Litle sites may link. Litle is not responsible for the availability of any other site to which any of the Litle sites links. Litle does not endorse or take responsibility for the contents, advertising, products or other materials made available through any other site. Under no circumstances will we be held responsible or liable, directly or indirectly, for any loss or damage that is caused or alleged to have been caused to you in connection with your use of, or reliance on, any content, goods or services available on any other site. You should direct any concerns to that site's administrator or web master.
Litle is not responsible for the content of third party sites hyperlinked from this page, nor does it guarantee the products or services offered on third party sites. Your use of the hyperlinks is at your own risk. You should review the privacy statement of a website before you provide personal or confidential information.
All Litle URLs are the sole property of Litle. Any links to Litle sites posted by you are done so at your own risk. Litle reserves the right to, at any and time for any reason, require you to remove any hyperlink, URL, or other connection to our site immediately upon request. Failure to do so will be considered a violation of these Terms.
Infringement Notices
If you believe your intellectual property or the intellectual property rights of a person of whom you are an agent has been infringed, please notify our copyright agent:
Jonathan Ellman
General Counsel
900 Chelmsford Street, Tower 1, Floor 10
Lowell MA 01851
.(JavaScript must be enabled to view this email address)
Your notification must (i) be in writing, (ii) be provided to our copyright agent, and (iii) include the following items:
- A physical or electronic signature of a person authorized or act on behalf of the owner of an exclusive right that is allegedly infringed;
- A description of the copyrighted work(s) or other intellectual property claimed to have been infringed;
- A description of where the infringing materials are located on our site or other materials so that we may easily locate them;
- The complaining party’s address, telephone number, and, if available, an electronic mail address;
- A statement that the complaining party has a good faith belief that use of the material in the manner complained of is not authorized by the copyright owner, its agent, or the law; and
- A statement that the information in the notification is accurate, and under penalty of perjury, that the complaining party is authorized to act on behalf of the owner of an exclusive right that is allegedly infringed.
Upon receipt of an infringement notification, Litle will investigate the situation, and if appropriate, block or remove the offending Content and/or other relevant materials.
Warranty
THE SERVICES, PRODUCTS, INFORMATION, MATERIALS, AND FUNCTIONALITY ON ANY LITLE SITE ARE PROVIDED "AS IS" AND WITHOUT WARRANTIES OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF NON-INFRINGEMENT OF THIRD PARTY RIGHTS, TITLE, MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND FREEDOM FROM COMPUTER VIRUS OR OTHER HARMFUL COMPONENTS, AND IS GIVEN IN CONJUNCTION WITH THE INFORMATION, MATERIALS, PRODUCTS AND SERVICES. NEITHER LITLE NOR ANY OF ITS AFFILIATED COMPANIES WARRANT THE ACCURACY, ADEQUACY, COMPLETENESS OR TIMELINESS OF INFORMATION, MATERIALS, PRODUCTS AND SERVICES, OR FUNCTIONALITY ON A LITLE SITE OR THE ERROR FREE USE OF A LITLE SITE.
NEITHER LITLE NOR ANY OF ITS AFFILIATED COMPANIES NOR ANY OF ITS OR THEIR RESPECTIVE LICENSORS OR SUPPLIERS WARRANT OR MAKE ANY REPRESENTATIONS REGARDING THE USE OR THE RESULTS OF THE USE OF THE SERVICES, PRODUCTS, INFORMATION, MATERIALS AND FUNCTIONALITY WITHIN A LITLE & CO. SITE IN TERMS OF CORRECTNESS, ACCURACY, RELIABILITY OR OTHERWISE.
LITLE & CO. IS NOT A PARTY TO, AND DOES NOT MONITOR, ANY TRANSACTION BETWEEN USERS AND THIRD PARTY PROVIDERS OF PRODUCTS OR SERVICES.
Limitations on Liability
LITLE WILL, UNDER NO CIRCUMSTANCES, BE LIABLE FOR ANY DAMAGES, LOSSES, OR LIABILITIES INCLUDING WITHOUT LIMITATION, DIRECT OR INDIRECT, INCIDENTAL OR CONSEQUENTIAL DAMAGES, LOSSES, OR LIABILITIES, IN CONNECTION WITH YOUR USE OF A LITLE SITE OR YOUR RELIANCE ON OR USE OR INABILITY TO USE THE INFORMATION, MATERIALS, PRODUCTS, SERVICES, OR FUNCTIONALITY ON THIS SITE, OR IN CONNECTION WITH ANY FAILURE OF PERFORMANCE, ERROR, OMISSION, INTERRUPTION, DEFECT, DELAYS IN OPERATION OR TRANSMISSION, COMPUTER VIRUS OR LINE OR SYSTEM FAILURE, EVEN IF LITLE & CO. IS ADVISED OF THE POSSIBILITY OF SUCH DAMAGES, LOSSES, OR EXPENSES.
Security
Litle is committed to protecting the security of our users. At Litle sites, we always use industry-standard security technologies when transferring and receiving customer data exchanged within our website. Please keep in mind, however, that no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, we cannot guarantee the security of any information you transmit using our website and you transmit such information at your own risk. Litle further does not assume responsibility for use or disclosure of your information that are the result of unauthorized or illegal access to our systems or those of our vendors or partners.
Applicable Law
Your use of this website and any dispute arising from that use is governed by the Commonwealth of Massachusetts and applicable federal laws.
Your Acceptance of These Terms
By using any of the Litle sites, you acknowledge that you have read, understood, and agree to be bound by the Terms. Please review the site's Terms and if you do not agree to the Terms, do not use this site. Your continued use of any Litle sites following the posting of changes to these terms will mean that you accept those changes.
(Last modified May 20, 2011)
Search
Search body
Data Security & Card Brand Compliance
Data Security
The PCI DSS applies to all entities that store, process and/or transmit cardholder data. It covers technical and operational system components included in or connected to cardholder data. If you are a merchant who accepts or processes payment cards, you must comply with the PCI DSS. PCI compliance is not only a requirement, it also plays an important role in securing your customer's cardholder data. Although PCI compliance standards have been around since 2004, many entities aren't sure where to begin. Litle & Co., in partnership with the Payment Brands and the PCI Security Standards Council helps to educate entities about data security and PCI compliance requirements.
PCI Levels & Requirements Defined
Card Brand Compliance
Are you looking for the latest Visa and MasterCard rules and regulations? Please click on the links below to access this information:
Visa International Operating Regulations - http://usa.visa.com/merchants/operations/op_regulations.html
MasterCard Rules - http://www.mastercard.com/us/merchant/support/rules.html
Best Practices
As a card-not-present merchant there are so many more variables playing into the overall success of your business. To achieve your goals it's important to align your business and financial goals with a payment processor that makes their relationship with you a priority. In fact, your payment processing solution should be intimately tied, albeit transparently, to the rest of your business.
As a company predicated on a foundation of best practices, Litle & Co. offers the following real-world recommendations to provide you with meaningful guidelines for optimizing success in card-not-present transactions:
- General Best Practices
- Chargebacks
- Interchange, Assessments, and Fee Structures
- Address Verification Service
- Card Security Checks
- Recurring Payments, Installment Billing, and Soft Billing Descriptors
- PCI Data Security Standard
- Advanced Authorization Services
- Tokenization
- Negative Option Marketing
Blog Disclaimer
Litle & Co.’s bloggers offer the materials on this website for informational and entertainment purposes only. While Litle believes that this material is interesting commentary on the card-not-present industry, our company does not warrant its accuracy or completeness. The information posted herein is intended to be general industry commentary, and may not apply to specific individual circumstances. This blog is not offered as consulting, legal or compliance advice, or advice of any type and should not be relied on as such. Litle makes no representations or warranties, express or implied, with respect to any information or links on this website. This website is not responsible for any third party websites or other content that can be accessed through this website, and does not make any representations or warranties whatsoever regarding third party information.
Thank You
We will email the white paper you requested shortly.
If you would like to speak with one of our customer service members please contact us at:
978-275-6500.
Whitepapers & Downloads
Whitepapers body holder
Quotes
Quotes body holder
Customer Success Stories
Body filler
Resources
Whether you want to view or read a sampling of our customers’ success stories, download a white paper or want to learn more about chargebacks, recurring transactions, interchange management or PCI compliance, you’ve come to the right place. Check back often for updated and informed perspectives on the payments processing industry from the leading independent authority in card-not-present commerce, transaction processing and merchant services.
post
Just a holder for blog body copy. Not used.
Events
If you plan to attend one of these events and are interested in learning more about Litle & Co. services, we have provided an email link and contact information for each show. Please feel free to reach out that individual to set up a convenient time to speak. If there are other questions you have regarding our presence at these events you may email Michael Cotta, Marketing Program Manager at .(JavaScript must be enabled to view this email address).
Thank You
Just filler
In The News
News body
Contact Us
Placeholder for contact. Not used
Careers
Career body content holder
Management Team
Management Team Body is not used. Do not edit this section.
About Us
Litle & Co. powers the payment processing engines for leading companies that sell directly to consumers through multichannel and internet retail, direct response marketing (TV, radio and telephone), and online services. Litle & Co. is the leading, independent authority in card-not-present (CNP) commerce, transaction processing and merchant services.
Our origins go back more than 30 years and are deeply-rooted in value innovation which benefits businesses that sell directly to consumers. In the 1970s, our founders ran a catalog business and created the first full-service, third-party fulfillment service bureau dedicated to serving catalogs. In the 1980s we built the first payment processing platform exclusively-focused on the highly-unique needs of card-not-present commerce.
The People Behind Your Payments are rich and diverse in both experience, function and background. Our people truly represent the world of payments.
Founded in 2001, we’ve landed No. 1 rankings on both the Inc. 500 and the Deloitte New England Technology Fast 50. Our customer-obsessed culture was awarded the 2010 Stevie Award for eCommerce Customer Service; and, our people are our greatest asset.
Press Releases
This is a placeholder
News and Events
News
Stay up-to-date on all of our latest product and services announcements including archived news, news coverage and press releases.
Events
Throughout the year, Litle & Co. exhibits at many industry events and conferences across the vertical markets we serve. Click here to see the most up to date schedule of events!
Home
This is the home page. This content will not be displayed and is only here for architecture. Please do not alter this page
Terms of Service
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Aenean gravida viverra odio, a lacinia nisl auctor vitae. Duis ultricies molestie purus nec viverra. Aenean iaculis sem sit amet massa tempus a posuere ante condimentum. Ut at libero a tortor dictum porttitor. Pellentesque hendrerit leo ac sapien sollicitudin vestibulum. Maecenas blandit condimentum gravida. Vestibulum tempor tempus condimentum. Sed ac mattis eros. Suspendisse potenti. Aenean neque lorem, pretium vitae varius bibendum, pulvinar quis nulla.
Sed scelerisque, libero ac egestas gravida, arcu elit pretium odio, non vehicula nunc elit ut massa. Cras lobortis, lectus et egestas consectetur, augue metus vulputate dolor, eget tincidunt dolor leo id nulla. Nulla tincidunt scelerisque ipsum, ac tempor ligula mattis vitae. Aliquam eros nunc, elementum et tempor nec, elementum id sapien. Nulla placerat quam non erat convallis vel volutpat enim pretium. Vivamus laoreet mattis ipsum, vitae convallis libero iaculis sed. Quisque lacinia adipiscing sapien, quis laoreet enim molestie nec. Proin fermentum, nisi ut convallis luctus, massa mauris mattis felis, ac bibendum magna urna eget ipsum. Nam sapien mauris, condimentum eu ullamcorper in, semper in nulla. Pellentesque rhoncus egestas rhoncus. Etiam pellentesque scelerisque accumsan. Nunc eu velit orci. Aliquam faucibus mauris at arcu gravida eu rutrum metus semper. Integer commodo justo non ipsum varius a eleifend purus consequat. Curabitur vel dapibus lectus. Duis vitae mi tellus. In in sem eu felis mattis euismod.
Nulla elementum egestas dolor, sed suscipit lorem mollis vitae. Morbi suscipit elementum ligula quis egestas. Quisque a mi mi, vitae ullamcorper dolor. Donec ut arcu lorem. Donec non turpis id leo condimentum posuere. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nam fermentum semper sapien et dictum. Mauris at mi mi. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Aliquam erat volutpat.
Proin sit amet urna dolor. Proin ut tortor et erat accumsan mattis sit amet vel dui. Etiam at risus libero. Phasellus gravida, erat eget vulputate ultricies, tortor mauris sagittis sapien, sed pulvinar purus arcu non orci. Aliquam non magna mauris, id ultricies neque. Praesent magna tortor, tempor id commodo at, facilisis a neque. Sed varius massa adipiscing ligula tristique in feugiat ligula commodo. Donec adipiscing vehicula arcu, eu bibendum enim commodo in. Cum sociis natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Praesent volutpat lectus viverra tellus auctor non tempor magna blandit. Nullam nibh ligula, dignissim lobortis viverra a, sagittis vel tellus. Praesent convallis tempus convallis. Proin mattis, nisi quis elementum venenatis, nulla risus ultricies felis, ut convallis ligula erat sit amet velit. Morbi sit amet odio nec neque adipiscing malesuada. Vivamus non magna est, at convallis metus. Quisque vehicula nisi sit amet libero convallis et gravida eros congue. Nunc sapien ligula, rutrum sagittis imperdiet ut, mattis eget erat. In felis mi, aliquam quis semper ac, aliquam ac nulla. In sit amet turpis sit amet lorem aliquam adipiscing eget eu felis. Curabitur eleifend metus sed metus porta molestie.
Practical Payments
Ten Approaches to Consider in Card-Not-Present Transactions
