Dear Valued Aloha Customer,

The rising incidences of stolen cardholder account data are a major concern for all participants in the payment industry. As a result of these thefts, merchants and financial institutions suffer loss and unanticipated operational expenses. In addition,
consumers experience significant inconvenience.

Payment Card Industry Data Security Standards (PCI DSS) state that it is your responsibility, as a merchant, to ensure your system is in compliance with data security requirements. PCI DSS is a set of security standards, developed by payment card companies, Visa, American Express, MasterCard, Discover, and JCB International, to establish common processes and precautions for handling, processing, storing, and transmitting payment card data. One of the most critical aspects of the 12 PCI DSS requirements is to ensure that full credit card track and CVV data is not stored in any form after authorization is complete. To protect your business and your customers, it is imperative that you are in compliance with the Payment Card Industry Data Security Standards (PCI DSS).

Any business that processes, transmits, or stores credit and debit card nformation is currently at risk of considerable fines and legal action, if their sites do not comply with the PCI DSS. There are several requirements that merchants need to address to become fully compliant with the PCI Data Security Standards. You can download a full copy of the Payment Card Industry Data Security Standards (PCI DSS) from the following Internet address: PCI Data Security Standard - PCI-DSS

It is strongly recommended to use a POS system that has been validated against the Payment Application Data Security Standards (PA DSS), formerly supervised by Visa and known as Payment Application Best Practices (PABP). The PA
DSS assists software vendors in developing payment applications that do not store sensitive cardholder data, thus ensuring their products are validated against the PCI DSS. Radiant Systems is pleased to say we are already listed as a vendor whose
payment application has been validated against the Visa PABP. This list is available at www.visa.com/pabp.

This packet contains information to help you gain a better understanding of the importance of PCI compliance and educate you on some of the tools available from your authorized Aloha Dealer and Radiant Systems.

• Data Security Alert
• PCI Quick Reference Guide
• PCI DSS Aloha POS Configuration Checklist
• PCI DSS Network Configuration Checklist
• PABP-Validated Versions of Aloha POS
• What’s Happening with FACTA Legislation
• Software Membership Information
• Radiant Learning Center Overview

It is your responsibility to ensure your system is in compliance with the PCI DSS requirements. If you have any questions, or need assistance with making any of the changes necessary to comply with PCI DSS, please contact your local authorized Aloha Dealer. Please contact Radiant at 1-877-794-7237 if you would like the name of the authorized dealer in your area.Thank you and we wish you continued success.