This answer should help clarify your question as well as many of the comments.
EMV LIABILITY IMPACT
Beginning October 1 2015, either the card issuer or merchant that is the cause of a contact chip transaction not occurring will be financially liable for any resulting card present counterfeit fraud losses. Lost and stolen card use is not applicable.
- If magnetic stripe card is used and it's counterfeit, merchant is generally not liable, same as today.
- If it's a chip card that's used on a mag only terminal, the merchant is liable.
- If it's a chip card that's used on a "chip-activated" EMV terminal, the issuer is liable.
There's other benefits being offered by different card brands to encourage updating to EMV, that are not specific to EMV transactions.
EMV CAPABLE VS EMV CERTIFIED
EMW ready terminals have been shipping for quite a while, essentially enabling merchants to update terminals while EMV specifications were still being worked out. An EMV capable terminal has the hardware to accept chip cards, but has not been activated, which may need a software update, and always must be turned on by the processor.
WHAT'S NEEDED TO PROCESS EMV WITH RMS
- A payment gateway certified for EMV
- Each gateway must certify each terminal model to each processor for it's platform.
The only independent gateway in the US, as of April 27, 2015, certified for EMV is CenPOS, specifically for the Verifone MX915 on First Data; additional terminals and processors are pending certification. Shift4, Paypros and Bridgepay, like other gateways, are 'preparing for', but have not certified any terminals to their gateways yet. So, RMS users can get 'capable' today, but not 'activated'.
Until an RMS gateway meets the criteria above, it's unknown if your version will work. If there's developer interest in integrating CenPOS, see bottom of this post.
COMPATIBLE RMS HARDWARE
Due to the current gateway certification process, initially, hardware choices will be limited. Ingenico iSC 250 and Verifone MX 915 are safe bets with most gateways (CenPOS & Shift4 has indicated they'll support both) but merchants should verify what their gateway road map is. TIP: Even though the ISC350 is nearly the same as the 250, but with a larger screen, it still requires separate certification. For this reason, gateways may only certify the more popular (lower cost) isc250.
DO YOU NEED EMV?
It depends. EMV is not a compliance issue and it's not mandated. It's possible that processors may choose to mandate it for their customers in the future, but that's not the case today.
COMPLIANCE
Do I need to upgrade to the latest RMS? There's a strong chance you need the latest version to meet PCI Compliance requirements; read the rules for your SAQ. Merchants must use current Windows software (XP is not compliant). Whether you need to upgrade for EMV is a function of gateway compatibility.
WHICH GATEWAY?
EMV is to retail as 3-D Secure is to Card Not Present, where fraud is expected to leap as EMV is implemented. If you have a mix of transactions, choose a gateway with both certifications.
For RMS and other integrations or CenPOS sales, send me a PM or call Christine Speedy at 954-942-0483.
https://www.linkedin.com/in/cspeedy
