PIN Entry Device (PED) Types Expiration

Platform: Omaha

Status: Initial Notification

Regarding: PIN Entry Device (PED) Types Expiration

First Data is dedicated to providing our clients with superior service. In alignment with this commitment, we are offering you a friendly reminder previously sent within our Fall Release, regarding the PED expiration of specific PED types.

Visa Pre-PCI PIN Entry Device (PED) Types

Devices that underwent independent lab evaluation and security testing approved by Visa under Pre-PCI requirements must be replaced with PCI PIN Transaction Security (PTS) approved devices by 12/31/2014.

As PED expiration dates approach, devices become:

· More vulnerable to attacks

· More likely to be involved in device and/or account data compromise incidents

A list of all Pre-PCI PEDs can be found here. The following should be validated:

· Model Name, Hardware #

· Firmware #

· Application # (if applicable)

· Loader versions etc.

Failure to upgrade may result in a non-compliance assessment.

It would be helpful if you begin with the merchants’ currently processing pin debit. If you need a report of pin debit merchants, please see your service analyst.

Should you have any questions regarding this Flash Communication, please open a ServiceCenter ticket via the client website http://www.firstdataclients.com, or contact the First Data Response Center 800-337-1222 (Option 3, Option 4.)