If you are new, you have 90 days to become Processing Card Industry (PCI) Data Security Standard (DDS) compliant. The timeline of communications for non-compliant fees notification and billing is:
- Month One: Merchant information is added to the Aperia Merchant Protection Portal. A PCI DSS compliance credentials email is sent from Aperia, and regular communications begin.
- Month Four (after 90 days): Considered as PCI DSS non-compliant and a warning of a monthly PCI DSS Non-Compliance Fee is in the message section of the monthly statement. This message continues each month until validation is complete.
- Month Five: An additional opportunity to become compliant is offered.
- Month Six: A monthly PCI DSS non-compliant fee is billed at month-end.