Ensuring you and your customers are protected

Page 4

As a requirement of the PCI Security Standards Council – all companies and personnel connected in any way with cardholder data must be trained to protect devices which capture payment card data through physical interaction with a payment card.

As the business operator, you should provide adequate privacy for the cardholder to enter their PIN. In addition, you should remind the cardholder to cover the screen when entering their PIN to protect their confidentiality.

To safeguard against tampering

When unattended, specifically out of business hours, ensure your iPhone is stored safely to avoid theft or unauthorised access and check each day for any signs of tampering. Tampering could include but may not be limited to; raised device edges, or screen protectors that were previously not there.

During regular business hours, inspect your iPhone from time to time, looking for unauthorised changes including a change in look or colour of your iPhone, damage to the device – especially around the edges, damage to any cables or other materials that could mask damage, or additional cables that should not be there.

To safeguard against unauthorised access to the BYO App:

  • We recommend setting your auto lock on your iPhone to a short period of time such as 5 minutes to prevent unauthorised access. The Tyro BYO App automatically logs out after 24 hours of inactivity.
  • Ensure that you have password protection \ biometric protection enabled on your device to prevent unathorised access.
  • Avoid using public charging stations i.e airports to prevent juice jacking – a cable used for charging and data transfer such as a USB cable is used to install malware on the device or copy potentially sensitive data.

Ensure your Tyro BYO App is ready to take payments

If you are using Tap to Pay on iPhone infrequently, ensure your Tyro BYO App is up to date before you start taking payments.  You can do this by enabling auto update of the App.

Adding users to your Tyro BYO account

If another person in your business needs to take payments via the Tyro BYO App, you can create a separate account for them in the Tyro Portal > Self-service > Tyro Go and Tyro BYO accounts.

Note:

  • Multiple Tyro BYO App users can use the same iPhone, but will need to log into their own Tyro BYO App.
  • If you set up more than one Tyro BYO account under your MID via the Tyro Portal, you will be able to run transaction reports at a MID level and at a User ID level.

Ready for next steps?