Buff City Soap to Deploy Revel Enterprise in 200 Locations Fueling Rapid Expansion Strategies

Buff City Soap to Deploy Revel Enterprise

Revel Systems, a cloud-based point of sale (POS) and complete business management platform, today announced its latest retail contract win, signing Buff City Soap. A fast-growing experiential retailer specializing in handmade, plant-based soaps, skin care, and laundry products, Buff City Soap has deployed Revel. The platform is now live at a number of its present locations. The scalability and ease-of-use of Revel’s flexible, cloud-based POS solution together with the business’s rich ecosystem of partner integrations made it the ideal option for Buff City Soap since the merchant rapidly expands its footprint nationwide.

See our Products:

  1. Shopify point of sale
  2. woocommerce point of sale
  3. commercetools point of sale
  4. MSI multi source inventory management system
  5. magento point of sale
  6. bigcommerce point of sale
  7. bigcommerce automation
  8. backorder management
  9. shopify automation app

Cloud-Based Infrastructure a Developing Priority

Retailers are continuing to fast-track mission-critical technology infrastructure upgrades to meet clients’ needs. These include mobile ordering, self-checkout and more personalized experiences. Digital technology and tools provide the flexibility, customer attention and ease of use necessary to survive in the modern environment and the scalability to grow. Buff City Soap is constructing its fast-growing performance from the ground up with Revel Enterprise. Revel will be an integral partner during Buff City Soap’s rapid expansion targeting 1,000 stores by 2025.

The Newest Revel Win for Enterprise Implementations

Building on its strong momentum, Revel also recently announced contract wins with fast casual franchises. These include The Halal Men at more than 80 locations, Moe’s Southwest Grill at more than 700 locations, and FAT Brands in 200 locations.

“Even in tough times, smart manufacturers are buying and deploying best-in-class technology. It’s necessary to make sure their survival in the short term. It’s also vital to maintain the best possible position to take complete advantage of growth in the long run,” said Chris Lybeer, chief strategy officer, Revel Systems. “Revel’s digital-first iPad POS platform has powerful momentum with large brands. This is due in large part to our flexible solutions that enable the innovative digital strategies required for quickly changing consumer dynamics. Revel’s native cloud solution is also a significantly smaller initial investment than legacy POS solutions.”

What’s PCI Compliance? A Guide to Requirements & Standards

PCI Compliance Explained

PCI compliance is one of the most essential things you will need to know as a company offering credit card providers. Unfortunately, not all companies know about it, or if they do, they might fail to follow it.

The truth is that non-compliance contributes to severe consequences that may affect your bottom line. More importantly, you will also be placing the privacy and safety of your clients at risk.

Today, we’ll discuss Payment Card Industry Data Security Standard (PCI DSS) compliance, what it is about, and how your business can become fully compliant with this standard.

See more :







What’s PCI Compliance?

Anytime your business deals with credit card payments, it requires PCI DSS compliance (also called simply PCI compliance).

PCI DSS is a set of rules and regulations which govern credit card transactions must be handled by companies that use them. The protocols describe how to safely and satisfactorily process, store, and transmit credit card data every time a client decides to pay with their card in your organization. The purpose is to eliminate fraud and information theft.

PCI compliance standards and certificates are managed by the PCI Security Standards Council or PCI SSC. It’s an independent body made in 2006 from the top credit card providers in the world, such as Visa, Mastercard, Discover, and American Express.

Since it deals with data protection, PCI criteria are often left in the maintenance of their IT department or, in larger businesses, a PCI compliance supervisor certified by the PCI SSC.

PCI credit card compliance revolves around a certain number of goals. The most important is building a secure network around cardholder information to prevent hacks and breaches. Businesses should perform simple but crucial best practices like satisfactorily configuring a firewall and implementing a strong password system. There should also be multiple layers of security on your system, involving both physical and virtual protection.

When the cardholder data has to be recovered in the system, your company should implement strong access control measures. That means restricting only certain people to get credit card info and carefully monitoring them.

You also need to know that PCI compliance is for any company that uses credit cards, and isn’t confined to just big companies.

See more :







Why PCI Compliance is Essential for Your Business

PCI compliance prevents you from headaches and hefty fines if you regularly manage credit card transactions across your business.

Credit card theft and fraud are challenging to take care of. On a practical side, it costs money, time, and effort that is best spent elsewhere in your company. You then have to take care of the negative reputation it’s going to have on your business. Once people know your company as vulnerable to security breaches, they won’t trust their card info with you just as much. For businesses that rely on online payments, this may be a large blow to your earnings.

In addition to this, you’ve PCI compliance offenses to take care of. If it’s discovered that you fell short of appropriate PCI criteria during a breach, you could be subject to steep fines from the company that processed your credit card transactions based on ComplianceGuide.org.

The simple fact is that credit card theft can happen, despite PCI compliant companies. But, compliance will help reduce or remove your obligations. For smaller companies, this is particularly crucial.

The most important thing is that PCI compliance makes your business a far more trustworthy place to work with.

PCI Compliance Requirements and Levels

If your company uses some of the major credit cards from penis suppliers from the PCS-SSC, then you want to be compliant.

Compliance comes in 4 levels, each with its own needs. What level you will need to be eligible for will depend on the volume of transactions your business sees, in addition to several other factors. You want to understand which category your company fits into, or risk complying with the incorrect one.

To pass, your organization should comply with 100% of their requirements and submit them to your acquirer. Here are the compliance levels, from the bottom grade to the highest:

Level 4

Qualification: Deals with businesses that have transaction volumes of less than 1 million annually, or 20,000 for e-commerce transactions.


  • Completed PCS-DSS Self-Assessment Questionnaire
  • Completed Attestation of Compliance
  • A passed vulnerability scan using an Approved Scanning Vendor (ASV)
Must read:






Level 3

Qualification: E-commerce companies which do 20,000 — 1 million transactions each year.


  • Completed PCS-DSS Self-Assessment Questionnaire
  • Completed Attestation of Compliance
  • A passed vulnerability scan using an Approved Scanning Vendor (ASV)

Level Two

Qualification: Businesses that do between 1 million to 6 million transactions annually.


  • Completed PCS-DSS Self-Assessment Questionnaire
  • Completed Attestation of Compliance
  • A passed vulnerability scan using an Approved Scanning Vendor (ASV)

Level 1

Qualification: The highest and strictest tier deals with companies that do more than 6 million transactions annually. Additionally, if a company has had a data breach Before and/or is categorized as a Level 1 merchant, they have to pass this compliance level


  • Proof of scan by an Approved Scan Vendor (ASV), done every quarter
  • Completed Attestation of Compliance
  • Annual Report on Compliance (ROC) performed by a Qualified Security Assessor (QSA). Alternatively, the business may also do its own internal audit as evidence.

Consequences for PCI Compliance Violations

Violating any of the rules of PCI compliance could lead to severe penalties and penalties.

While it is not signed into law, organizations that process credit card transactions are able to levy fines that range from $5,000 – $100,000 per month, depending on the seriousness of the case. These charges are levied in your bank, which then passes the costs on to you. They also have the capacity to maximize your transaction fees or terminate contracts altogether.

Moreover, the PCI SSC will create re-applying for compliance far more challenging. They will ordinarily place you in a higher level, with more stringent requirements and application fees. Sometimes, they can even disallow you from performing card transactions entirely.

Beyond issues with this PCI SSC, however, there also long term damages that could happen to your company if it is not 100 percent PCI compliant. Data breaches are serious problems, and you may end up in the losing end of a lawsuit. These may involve settlement or legal fees that may cripple small businesses.

Other sources:






Data hacks can also be detrimental to the profitability of your company. It’s possible your clients’ credit card information isn’t the only one stolen from your organization. Additionally, the loss of confidence from the clients can negatively impact your reputation.

The most important thing is that non-compliance with PCI regulations is only an dangerous and poor way of doing business.

How to Stay PCI Compliant

PCI compliance isn’t a one-time thing. With new standards being released and vulnerabilities being found, your organization needs to keep on top of credit card safety.

A significant part of keeping compliance is picking a reliable payment processor that follows all the PCI regulations . Search for ones offering data security features like tokenization and encryption which protect credit card information while it is being transmitted.

It’s also a good idea to store sensitive card info offsite in PCI-approved servers. That is why payment processors that have support for cloud storage are highly favored.

The PCI SSC also requires you to keep your compliance, and doing this requires the completion of particular programs. The cost of the programs is contingent upon the level of compliance your particular business will need. PCI SSC provides advice on program fee schedules and certificates on their site.

As you can see, the fees can become quite costly depending on what’s needed for your degree of compliance. That is why it will become an issue if the PCI-SSC decides to bump your small company up to Level 1 because of a security breach. The program fees, generally geared toward large companies with higher earnings, will cripple your small business cash flow.

Become PCI Compliant with Revel Systems

If you discover PCI compliance for your company is a pain, you are not alone. The fantastic thing is that Revel Systems’ iPad POS system is fully compliant with the PCI DSS standard.

Revel is a POS platform built from the ground up with security in mind, and we are proud to be featured on the PCI Security Standards Council’s list of participating organizations. As a participating member of this community, Revel can play an active part in helping secure the future of payments along with other payments industry stakeholders.

In addition, we utilize the EMV (Europay, Mastercard, Visa) standard to make certain that all your credit card information is protected with each transaction. Its distinctive code mechanism means it is impossible to fake or hack. You can find out more about our commitment to protecting your business data from our safety page.

More also: