Payment Card Industry Security Standard (PCI DSS) Compliance

Payment Card Industry Security Standard (PCI DSS) Compliance

PCI Compliance Diagram Introduced in 2004 – but with roots dating back to 2001 as part of the Visa Cardholder Information Security Program – the Payment Card Industry Data Security Standard (PCI DSS) can hardly be described as new. What is relatively new, however, is the mounting pressure to achieve compliance with it, along with a shift in its status from “best practice” to “requirement” for guidelines applicable to Web-facing applications.

The Payment Card Industry Data Security Standard (PCI DSS) is a world-wide benchmark mandated by the card schemes for the protection of cardholder identity and transaction information. To help organisations ensure that they are compliant with this new standard, Dataplex Systems Limited has combined its consultancy practices in Security and Infrastructure to offer a package of PCI compliance consulting services that ensure PCI compliance.

Providers that are none compliant face the prospect of substantial fines imposed by the card schemes in the order of hundreds of thousands of pounds or of being permanently removed from the card acceptance programme, should a security breach occur which involves their systems or processes. Although the initial focus is on online transactions, PCI compliance applies to any organisation that stores, processes or transmits cardholder data and consequently affects merchants with physical stores as well as banks, processors and service providers.

The Dataplex PCI compliance consultancy service includes risk assessment to identify non-compliant areas, followed by a set of recommendations to address any identified areas. The whole process is project managed through dedicated Prince II Project Managers who have been responsible for delivering complex infrastructure and security projects.

Click here to download Dataplex White Paper on Achieving PCI Compliance.