PCI Compliance - Protecting your Member Data!

🔐 What is PCI Compliance?

PCI ( Payment Card Industry)compliance ensures that organizations handling credit card data maintain a secure environment. Flocknote, together with our trusted payment processor, Stax, prioritizes your data security by adhering to these high standards. In this article, we’ll explain what PCI compliance means, why it’s important for your church, and how Flocknote helps you stay secure and up to date!

We highly recommend watching this video or using the written guide below. This will greatly expedite the process and save you lots of time!

Video Time Stamps

• 0:00 - What is PCI and why do we have to do it?
• 5:41 - What is required to be PCI Compliant?
• 16:15 - Question-by-question walkthrough
• 50:09 - Finalizing your submission & beyond

Why does my church need to be PCI Compliant? Is this optional? 

PCI compliance shows that your church or organization is taking the security measures needed to keep cardholder data secure so you must become compliant. Even if you are not actively using your Flocknote Online Giving account at the moment, you still need to show that you are compliant with these standards. For this reason, this is required so make sure to put this on your to-do list! If by chance you do not become compliant within a certain time frame, you will incur a fee from Stax (see below).

How often must my church update its compliance? 

The standards for payment processing are constantly advancing, to make sure that your church or organization complies with the most up-to-date requirements, PCI compliance must be renewed annually.

How does the compliance process work?

Financial Controllers will be required to complete an annual questionnaire. The team at Flocknote will be happy to assist with this process.

Upon being verified with Flocknote's payment provider, Stax you will receive an automated email with login instructions to access the PCI toolkit. If you did not receive an email or need help getting started, please reach out to help@flocknote.com

The login process will bring you to your dashboard (see below). There are a quick series of steps to complete! To begin, click underneath Step 1 to add information about how your church or organization accepts payments. Work through the questions as best as you can. If you hit a snag our team is standing by to help. Notice that as you finish each step they will be marked as "complete" so that you can track your progress. 👍

Step 2 is the SAQ (Seft-Assessment Questionnaire). Click on next under step 2 from the dashboard to begin the questionnaire. Please complete the survey honestly and accurately. If you answer a question in a way that is against best practices, don't panic, Stax will assign you a remediation task to help you get back on track. Note that you may need to complete any assigned tasks before completing the survey.

After you complete step 2, you may notice that steps 3 and step 4 are not required. If marked as such, please feel free to continue to the last step. If steps 3 and 4 are required, please use your Flocknote network URL as your “website” for those questions.

To find your URL, open up the Everyone group and then click the settings cogwheel in the top right-hand corner of your screen. From the dropdown, choose Group Settings. You will see the network URL in the second text box. Feel free to copy the URL directly from here!

Once that survey is completed please attest to your compliance (aka confirm the information you provided is true and correct. ✅ ) Simply select "Click here to attest" underneath step 5. Just like that, your PCI compliance is finished and you are all set!

Have more questions about PCI Compliance? Reach out to our team at help@flocknote.com