Strengthening of measures for security in credit card transactions

Strengthening of measures for security in credit card transactions

On March 1, 2018, the Credit Transaction Security Council*1 announced the "Action Plan 2018" for the strengthening of measures for security in credit card transactions. In addition, Act for Partial Revision of the Installment Sales Act took effect on June, 2018. The Action Plan is the code of practice for the Act for Partial Revision of the Installment Sales Act.The Action Plan requires operators to "not retain" credit card data or to "comply with PCI DSS*2" as part of the measures against credit card data leakage, and to prevent of fraudulent usage. It explicitly defines a "non-retaining" state as a state in which merchants "do not store, process or pass over" credit card information in or through machines or on the network of merchants.
*1 The Ministry of Economy, Trade and Industry as well as many credit card-related companies established the Security Council in March 2015
*2 An acronym for Payment Card Industry Data Standard, which is a global security standard jointly formed by five international card brands

"Action Plan" for enhanced security measures on credit card transactions

Credit Transaction Security Council’s Action Plan is composed of the following three measures: "prevention of card data leakage," "prevention of unauthorized usage with forged card" and "measures against fraudulent use of credit cards in E-commerce." Under the Action Plan, E-commerce operators are required to take the following two actions.

Prevention of card data leakage

→ "Not retaining" card data or Compliance with PCI DSS for operators retaining card data

Prevention of fraudulent usage on E-commerce site

→ Introduction of multi-lateral and multi-layered prevention measures

Measures for not holding card data and preventing unauthorized usage by the type of merchants

  • ・・・Prevention of card data leakage
  • ・・・Prevention of fraudulent usage on E-commerce site
Tokenization
Link-type payment
Member ID payment
ReDShieid
3D Secure
CVV
  • ・・・Prevention of card data leakage
  • ・・・Prevention of fraudulent usage on E-commerce site
  • ・・・Prevention of card data leakage
  • ・・・Prevention of fraudulent usage on E-commerce site

We take you through the Action Plan and above products in our seminars (in Japanese only)

GMO Payment Gateway holds various seminars regarding payment, security measures, overseas market entry, online advertising to boost your sales, and others.