Regarding card payments at a Crowne Plaza franchise, what standards must the franchisee comply with?
Crowne_Plaza Franchise · 2025 FDDAnswer from 2025 FDD Document
- 3.1 Card Organization Rules. You must comply with the Card Organization Rules, including the Payment Card Industry Data Security Standard ("PCI DSS"), applicable to the Card types you accept.
You are responsible for staying up to date with all changes to Card Organization Rules and maintaining compliance with Card Organization Rules.
Card Organization Rules may be available on websites such as https://usa.visa.com, http://www.mastercard.com/us/merchant/support/rules.html, www.discovernetwork.com/en-us, and www.americanexpress.com/merchantopguide, as links and their content may change from time to time.
3.4 Conflicts. For the avoidance of doubt, your use of the Services, the transactions you process, and all of your acts and omissions must comply with the Agreement, Applicable Law, and Card Organization Rules (including PCI DSS).
4.1 Payment Card Industry Data Security Standard.
(a) You Must Comply with PCI DSS. As part of your obligation to comply with Card Organization Rules, you are required to comply with PCI DSS.
You also are solely responsible for ensuring that all Merchant Providers, Merchant Systems, Third Parties, Third Party Services, equipment, and software that you use in connection with Card transactions comply with Card Organization Rules, including PCI DSS.
4.6 Merchant Providers.
- (a) Data Security Requirements Apply to Merchant Providers. The data security standards set forth in this Section 4 also apply to Merchant Providers.
Before you engage any Merchant Provider, you must provide to us in writing the Merchant Provider's legal name, contact information, and intended function.
You acknowledge and agree that you will not use, or provide Cardholder data access to, any Merchant Provider unti
Source: Item 23 — Receipts (FDD pages 100–424)
What This Means (2025 FDD)
According to Crowne Plaza's 2025 Franchise Disclosure Document, franchisees must adhere to specific standards regarding card payments, primarily focusing on compliance with Card Organization Rules and data security. The franchisee's use of services, transaction processing, and overall conduct must align with the franchise agreement, applicable laws, and Card Organization Rules, including the Payment Card Industry Data Security Standard (PCI DSS). In case of conflicts, applicable law takes precedence, followed by Card Organization Rules, and then the agreement itself.
Crowne Plaza franchisees are responsible for staying informed about any changes to Card Organization Rules and maintaining ongoing compliance. These rules can be found on websites such as Visa, Mastercard, Discover, and American Express. Franchisees are also required to comply with the Your Payments Acceptance Guide, available online, although the franchise agreement terms will govern in case of inconsistencies. Non-compliance with data security requirements may result in fines, penalties, or restrictions on accepting cards.
Furthermore, franchisees are responsible for ensuring that all Merchant Providers, Merchant Systems, Third Parties, Third Party Services, equipment, and software used for card transactions comply with Card Organization Rules, including PCI DSS. Before engaging any Merchant Provider, the franchisee must provide the franchisor with the provider's legal name, contact information, and intended function in writing. The franchisee cannot use or provide Cardholder data access to any Merchant Provider until the franchisor approves it.