Merchant guides and brochures
The following documents provide information that assists you with the operation of your merchant facility. These can be printed for your reference.
Terms and Conditions
- EFTPOS Merchant Agreement Terms and Conditions (PDF 507KB)
- Your guide to the Payment Card Industry Data Security Standard (PDF 91KB)
- Protecting your business against credit card fraud (PDF 114KB)
- Your guide to merchant fees and charges (PDF 150KB)
- Privacy Statement
- Direct Debit Request Service Agreement
Notice to Bank of Melbourne Merchant Customers
Effective 10 November 2023, important changes will be made to your Direct Debit Request Service Agreement (DDRSA). A summary of these changes is below.
DDRSA
From 10 November 2023, the DDRSA will be available in a standalone document online at Direct Debit Request Service Agreement . Your DDRSA is currently located at section 42 of the EFTPOS Merchant Agreement Terms and Conditions and will be removed on the next release date on 08 December 2023.
Section | What has changed |
---|---|
2. Amendments by us |
|
3. How to cancel or change direct debits |
|
4. Your obligations |
|
5. Dispute |
|
6. Accounts |
|
8. Contacting each other |
|
Effective 08 December 2023 changes will be made to the documents which form part of your Agreement with us. A summary of these changes is listed below.
EFTPOS Merchant Agreement Terms and Conditions (Terms and Conditions)
Section | What has changed |
---|---|
Section 2 Definitions and interpretation |
|
Section 9 Your Account |
|
Section 15 eCommerce Merchants |
|
Section 24 Fraud prevention |
Account Data Compromise (ADC) Events
|
Section 42 Your Direct Debit Request Service Agreement | Removed this section 42 and replaced it with a standalone document called “Direct Debit Request Service Agreement”. A current version is available online at Direct Debit Request Service Agreement from 10 November 2023 and contains the following changes from section 42.
|
Protecting your business against credit card fraud
Section | What has changed |
---|---|
Safety for Online Merchants |
|
Your guide to the Payment Card Industry Data Security Standard (PCI DSS)
From time to time the PCI Security Standards Council will release a new version of the PCI Standard. As of the 31st of March 2024, PCI validation under version 3.2.1 will be retired and superseded by version 4.0. The purpose of the new version is to allow merchants more flexibility in the methodologies used to secure card data within their system and networks focused on an “outcome based” approach. Version 4.0 has enhanced its clarification on requirements, revised the format and includes new requirements to meet the evolving threat landscape. The changes to the 12 core requirements, Self Assessment Questionnaire (SAQ) descriptions and the addition of a new SAQ category “SPoC” reflect these improvements.
For a full list of changes please refer to the “Summary of Changes from PCI DSS Version 3.2.1 to 4.0” found on the PCI Security Standards Councils website.
Section | What has changed |
---|---|
What are the 12 key requirements of PCI DSS? |
|
What is the Self-Assessment Questionnaire (SAQ)? |
|
What are the requirements for Payment Applications? | This section has been removed as the PCI DSS has removed the Payment Application Data Security Standards (PA-DSS) and it is no longer applicable. |
Your guide to merchant fees and charges
Section | What has changed |
---|---|
Merchant Flat Rate Pricing |
|
Simple Pricing Plan1 |
|
Our fees explained | Amended the heading “Simple Pricing Plan” to “Plan Fee.” |