The vendor is required to provide payment card merchant services for include:
• Provide competitively based fees for the processing of major credit and debit cards:
visa, Mastercard, discover, and American Express.
• Allow agency to authenticate and validate the card using online payments, mobile payments, and in-person payments using chip cards, magnetic stripe cards, contactless payments, near-field communications, and mobile payments through digital wallets such as apple pay, google pay, and Samsung pay.
• Support recurring payments including the ability to automatically charge customers on a regular basis.
• Provide your gift card offerings and fees associated with them. it will need to be a closed loop card system.
• Deposit payments electronically into specified agency bank accounts by merchant id ensuring that the float on agency funds is minimized.
• Provide online access and reporting to view and download daily transactions, account reconciliation and settlement reports by merchant id, by payment card type and by transaction.
• Online access to view, hold, or void transactions before they settle or refund specific transactions.
• Provide credit card and bank account tokenization support.
• Offer "system admin" level web application for viewing logs and api errors.
• Provide monthly statements per merchant id that clearly summarize all revenue related activity including all chargeback information by data and card type.
• All processing fees must be separated from revenue deposits.
• The statement deposit activity must match the actual deposit activity in agency accounts.
• Provide seven (7) days per week and 24 hours per day technical support with written service level agreements (SLA’s).
• Provide business continuity and disaster recovery in case of unplanned outages in the vendor’s merchant processing system.
• Comply with all relevant industry standards, including but not limited to the payment card industry data security standards (PCI DSS), to ensure the security of all cardholder data.
• Provide evidence of compliance with these standards and conduct regular security audits and vulnerability assessments to ensure ongoing compliance.
• Provide a current service organization control (soc) report that verifies the effectiveness and security of payment processing systems.
• The report must be issued by a reputable third-party auditor and cover all relevant controls related to the security, availability, and processing integrity, confidentiality, and privacy of customer payment data.
• The report must be made available upon request, without signature of a non-disclosure agreement. the soc report should be updated regularly.
- Contract Period/Term: 1 year