Heartland Payment Systems announced on Monday that it will begin offering the “industry's only credit/debit card information breach warranty,” according to the company's product page.
The warranty covers any Heartland E3 end-to-end encrypted device if it fails to prevent an unauthorized decryption of cardholder data, and if that error can be attributed to a defect or error in the device's software or hardware, according to an information sheet on the program.
Under the one-year warranty period, Heartland will pay the merchant's compliance fines, fees and/or assessments that the merchant must pay to card brands, an issuing bank or acquiring bank.
The company will also cover merchants' costs for a directly related forensic audit if conducted by a PCI-certified Qualified Incident Response Assessor.
Heartland disclosed a data breach in 2009 that exposed nearly 130 million card numbers and was caused by “extremely sophisticated” malware on its systems.