What is the Pump It Up franchisee responsible for regarding PCI compliance?
Pump_It_Up Franchise · 2025 FDDAnswer from 2025 FDD Document
comply with our System Standards and Payment Card Industry ("PCI") network security standards. At the time of publication of this FDD, these standards
can be found at https://www.pcisecuritystandards.org/merchants/. You must have an understanding of these standards and how they pertain to the day-to-day operations of your business.
You must implement and maintain a PCI-compliant LAN for payment processing, reservation system access, sales reporting, and all other general office functions requiring internet access. You will be responsible to ensure that your LAN complies with our System Standards and all current PCI Compliance Standards including but not limited to: (1) purchase and maintenance of routing equipment capable of providing multiple VLAN's (Virtual Networks) and a firewall to isolate the traffic on each VLAN as directed by PCI Standards; (2) installation and maintenance of network wiring and faceplates to all necessary areas of your building; (3) regular maintenance and testing of routing equipment for PCI security standards. We strongly recommend that you secure additional services through a third-party vendor to ensure that you meet PCI Compliance Standards and complete an annual PCI Self-Assessment Questionnaire. The estimated annual cost of required upgrades and maintenance for the POpS System and Computer System is between $100 and $2,000.
Although the minimum requirements of the POpS System are intended to meet PCI compliance regulations, it is your responsibility to assure that the store n
Source: Item 11 — FRANCHISORS'S ASSISTANCE, ADVERTISING, COMPUTER SYSTEMS AND TRAINING (FDD pages 30–41)
What This Means (2025 FDD)
According to Pump It Up's 2025 Franchise Disclosure Document, franchisees must understand and adhere to PCI compliance standards for their business operations. These standards, which can be found at the provided link, are crucial for maintaining secure payment processing and data handling.
The franchisee is responsible for implementing and maintaining a PCI-compliant Local Area Network (LAN) for payment processing, reservation systems, sales reporting, and general office functions. This includes purchasing and maintaining routing equipment capable of providing multiple Virtual Networks (VLANs) and a firewall to isolate traffic, as well as installing and maintaining network wiring. Regular maintenance and testing of routing equipment are also required to meet PCI security standards.
Pump It Up recommends securing additional services through a third-party vendor to ensure PCI compliance and to complete an annual PCI Self-Assessment Questionnaire. While the minimum requirements of the Pump It Up system are intended to meet PCI compliance regulations, it remains the franchisee's responsibility to ensure the store network complies with all PCI rules. The FDD states that franchisees should obtain the services of a third-party company to routinely test and advise them regarding their compliance. The estimated annual cost for these upgrades and maintenance ranges from $100 to $2,000.
In summary, Pump It Up franchisees bear the ultimate responsibility for achieving and maintaining PCI compliance, including understanding the standards, implementing necessary security measures, and undergoing regular assessments, with the franchisor recommending the use of third-party experts to ensure full compliance.