Archive for May, 2010

PCI DSS and PA-DSS

Tuesday, May 4th, 2010

It’s acronym soup out there with all the credit card compliance changes coming for July 1, so I thought an explanation of the difference between these two might be helpful.

PCI DSS standards apply to each merchant who accepts payment via credit cards. There are various rules regarding the securing of credit card information depending on whether you record it on paper, in a computer, or both, and physical security rules also apply if you have credit card terminals.

PA-DSS is the certification being required for commercial applications that process credit cards. This requirement is on the software developers, not the merchants.

Sage is currently in the process of getting certification for MAS 90 and MAS 200 version 4.3 (with update 18) and version 4.4 (with product update 1).
PCCharge is already certified. On the Accpac side, third party providers are getting their apps PA-DSS certified, and Sage is reportedly developing its own Accpac credit card processing module that will be certified when released.

Sage CRM Tips and Tricks

Monday, May 3rd, 2010

Did you know you can automatically create leads from your corporate website? Using the Web To Lead feature you can save time and generate new leads instantly! Web To Lead can be found in the Administration -> Customization -> Lead screen.

Use the Recent button to quickly find a recently viewed company, person or case. The button is on the top left under the SageCRM logo. It displays a drop-down list of recent companies, leads, opportunities and people you have accessed for you to select from.

Use the backwards and forwards arrows to navigate SageCRM.com, using these buttons will return you to exactly where you were. They are under the SageCRM logo on the upper left.

Did you know that you can quickly upload contact details into SageCRM? For example, you can upload your entire mobile phone contact by uploading a CSV file in Administration -> Data Management -> Data Upload. A Quick Step Guide on updating your data to SageCRM.com can be found here.

Tired of writing similar emails? Why not create Email Templates? You will find these under Administration -> E-mail and Documents -> E-mail Templates.

The document drag-and-drop functionality provides a shortcut for linking documents, emails, or any type of file from another application to customer data.

Changing the default grid size in your Preferences will enable you to store more than 10 records in a list.

Configure your personal Dashboard as the first page you land on when you log in. This will enable you to easily and quickly view the information most relevant to you, such as your outstanding appointments, recently viewed leads, the companies you most often work with!

Right-clicking the mouse on any menu button will activate shortcut pop out lists.

You can use the wild card search on any field on the search screen. The wild card in SageCRM is the “%” symbol. The % wild card means ‘contains the value’. To search using a wild card select the Find menu button.
In the company or person context type, for example, %software in the Company Name field and select the Find action button. All companies containing the word “software” are returned from this search.

By the way, try the Search button on our blog to search for particular topics.

PCI DSS Compliance

Sunday, May 2nd, 2010

If your company accepts credit card payments, you have probably already heard from your credit card processor about the requirement to be PCI DSS certified by July 1. As long as you process less than 6 million transactions per year and have not had a data security breach, the certification consists of answering a questionnaire and arranging for a periodic security scan, rather than a on-site audit.

Sage Payment Services has arranged for Trustwave to provide the security scan and a wizard interface to walk you through the questionnaire part. The modest fee includes tech support, so if any of the questions leave you wondering “what the hell does that mean?”, make them earn their fees.

Here are some web sites with more info on the subject:

The PCI Security Standards Council – straight from the horses mouth, but also trying to sell consulting services so it is not particularly user friendly.

Sage MAS 90 and MAS 200 PCI info

Sage Accpac PCI info

And last but not least, the PCI DSS Guru site which includes a template for a company credit card security policy, which is one of the requirements of PCI DPS certification.