MRC Online Courses

Payment Security and Compliance

The Payment Security and Compliance course is a self-paced, intermediate program covering essential aspects of payment security, regulatory frameworks, and compliance strategies in the digital age.

This course is structured to cover a wide range of crucial topics, from identifying key stakeholders in the payment security landscape to understanding intricate regulatory requirements such as GDPR and CCPA. Participants will gain insights into the technicalities of card issuing, the mechanics of EMV chip processing, and the sophisticated realm of tokenization. The course also focuses on the nuances of Strong Customer Authentication (SCA), discussing its impact, benefits, challenges, and implementation strategies.

Who Should Enroll?

  • eCommerce professionals seeking to understand the nuances of online transaction security and learn how to implement robust measures to protect customer data.
  • Business owners and managers looking to equip themselves with the necessary knowledge to safeguard their business against data breaches and financial fraud while maintaining regulatory compliance.
  • Compliance officers looking to enhance their knowledge of global compliance requirements, focusing on GDPR, CCPA, and PCI DSS, and learn how to effectively navigate these regulations.
  • Risk management professionals seeking to learn about potential threats in the payment ecosystem and the strategies to mitigate these risks effectively.
  • This course may also benefit IT security specialists, financial service providers, and legal professionals.


Learning Objectives

  • Identify the diverse stakeholders within the payment security landscape
  • Recognize the payment security standards and the payment regulations and compliance directives
  • Understand the role of compliance in eCommerce
  • Identify the technologies, solutions, and potential threats to the digital payment ecosystem
  • Understand the basics of card issuing and the security features
  • Explain the EMV chip process and security features
  • Explain the tokenization process and security features
  • State the elements of Strong Customer Authentication
  • Recognize the implications of SCA stakeholders
  • Identify the pros and cons of SCA and how to implement it
  • Define PCI requirements for eCommerce merchants
  • Explain how to implement, maintain, and ensure compliance
  • Define general data protection regulation and its consequences
  • Define the General Data Protection Regulation (GDPR)
  • Identify best practices for GDPR compliance
  • Explain the California Consumer Privacy Act of 2018
  • Recognize the consequences of CCPA non-compliance
  • Identify CCPA compliance strategies 


Program Details

  • Program Level: Intermediate
  • Program Field of Study: Specialized Knowledge
  • Program Delivery Method: QAS Self Study
  • CPE Credits: 1.8
  • Advanced Preparation and/or Pre-requisites: None
  • Pricing: USD $150 (plus applicable taxes) | MRC Members receive a 50% discount on all eLearning courses.

Please allow approx. 2 hours to complete this course. The course culminates with a comprehensive final assessment to evaluate the user's comprehension of the material. Upon successfully completing the final assessment, participants will be awarded a certificate of completion and CPE credits representing their proficiency in the subject matter.

CPE credits can be applied toward industry certifications such as the Certified Payments and Fraud Prevention Professional (CPFPP) and the Certified Fraud Examiners (CFE).

MRC Education Accreditation

The Merchant Risk Council is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: nasbaregistry.org

National Registry of CPE Sponsors logo

MRC Education Refund Policy

MRC Education eLearning course refunds and cancellations are determined on a case-by-case basis. Cancellations and requests for refunds must be communicated in writing to programs@merchantriskcouncil.org. Refunds will not be issued once a course is started. Additionally, courses must be completed within one year of the course enrollment date.