How will Buns On Fire designate the PCI compliant vendor that franchisees must use?
Buns_On_Fire Franchise · 2025 FDDAnswer from 2025 FDD Document
You must ensure that you are maintaining a Payment Card Industry ("PCI") compliant security service subscription to protect the confidentiality of information gathered from customers' credit cards and other payment cards. The POS vendor may offer this service, however, if it does not or it discontinues this service you must enroll in a new service. We will designate the PCI compliant vendor that you must use and the security service subscription that you must subscribe to in the Operations Manual.
Source: Item 11 — FRANCHISOR'S ASSISTANCE, ADVERTISING, COMPUTER SYSTEMS, AND TRAINING (FDD pages 25–33)
What This Means (2025 FDD)
According to Buns On Fire's 2025 Franchise Disclosure Document, franchisees are required to maintain a Payment Card Industry (PCI) compliant security service to protect customer credit card information. The FDD specifies that Buns On Fire will designate the required PCI compliant vendor and security service subscription in the Operations Manual.
This means that franchisees do not have the freedom to choose their own PCI compliance vendor. Instead, they must use the vendor that Buns On Fire has selected and outlined in the Operations Manual. The Operations Manual is a confidential document that Buns On Fire will loan to the franchisee.
It is important for prospective franchisees to understand that Buns On Fire retains the right to modify the Operations Manual, and franchisees may be required to pay reasonable costs for reproduction of a revised manual every two to five years, or as reasonably required to maintain the functionality of the Operations Manual. Therefore, the designated PCI compliant vendor could change during the franchise term.