Security, Compliance & Data Protection

Every time a customer pays with a credit or debit card, sensitive data moves between multiple systems — from the point-of-sale terminal or payment gateway, through the processor, to the card network and issuing bank. If any link in that chain is compromised, the consequences are severe: stolen card numbers, fraudulent charges, regulatory fines, and lasting damage to your reputation.

That is why Unison Payment Solutions builds security into every layer of the transaction lifecycle. We don't treat compliance as a checkbox or an add-on service — it is the foundation of everything we provide. From PCI Level 1 certified infrastructure to end-to-end encryption and tokenization, our security stack ensures that cardholder data is protected from the moment a card is read until the transaction settles.

For merchants, strong payment security means fewer chargebacks, lower fraud losses, and protection against the financial penalties that come with data breaches. For customers, it means peace of mind when they hand over their card or enter their details online. Security is a competitive advantage — businesses that prioritize it build trust, reduce risk, and operate with confidence.

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security requirements established by the major card brands — Visa, Mastercard, American Express, and Discover — through the PCI Security Standards Council. Every business that accepts, processes, stores, or transmits credit card data must comply with PCI DSS, regardless of size or transaction volume.

PCI Compliance Levels

• Level 1 — Over 6 million transactions per year. Requires annual on-site audit by a Qualified Security Assessor (QSA) and quarterly network scans.
• Level 2 — 1 to 6 million transactions per year. Annual Self-Assessment Questionnaire (SAQ) and quarterly scans.
• Level 3 — 20,000 to 1 million eCommerce transactions per year. Annual SAQ and quarterly scans.
• Level 4 — Fewer than 20,000 eCommerce or up to 1 million total transactions per year. Annual SAQ recommended.

Unison Payment Solutions processes through PCI Level 1 certified infrastructure — the highest tier. This means our systems undergo the most rigorous annual audits, penetration testing, and vulnerability assessments. When you process through Unison, your transactions ride on infrastructure that meets the same security standards used by the largest financial institutions in the world.

How We Help You Stay Compliant

Most small and mid-size businesses fall under PCI Level 3 or Level 4, which requires completing an annual Self-Assessment Questionnaire (SAQ). The SAQ can be confusing — there are multiple versions (SAQ A, SAQ B, SAQ C, SAQ D) depending on how you accept cards. We guide you through the correct questionnaire, explain what each requirement means in plain language, and provide the documentation you need to maintain compliance year-round.

Non-compliance can result in fines of $5,000 to $100,000 per month from the card brands, increased processing fees, and in severe cases, loss of the ability to accept card payments entirely. We include PCI compliance support with every merchant account at no additional charge — there is no separate "PCI fee" or annual compliance surcharge.