Community

Join the Community

21,916
Expert opinions
43,959
Total members
402
New members (last 30 days)
167
New opinions (last 30 days)
28,652
Total comments
Join Sign in

PCI compliance through the looking glass

  0 Be the first to comment
Paul Penrose
Paul Penrose
Head of Research
Finextra
Location
London
Followers
10
Opinions
307
Unfollow

This whole PCI DSS compliance thing is beginning to make my head hurt.

Here, Visa chief enterprise risk officer Ellen Richey says: "PCI DSS remains an effective security tool when implemented properly - and remains the best defense against the loss of sensitive data. No compromised entity to date has been found to be in compliance with PCI DSS at the time of the breach."

So neither Hearltand Payment Systems or RBS WorldPay were PCI-compliant when they were looted by Internet criminals earlier this year?

Well, er, yes...and no. Both had received certification from Visa, but that certification measures compliance only at the time of the audit.

It's a clever get-out for Visa, fearing repercussion from future legal tussles with banks and card customers. On the one hand, it can claim that the industry is working to clean up its act by enforcing the standard - and on the other, that compliance certification is worthless after the fact.

It's a distinction that would make Lewis Carroll proud.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

3967
 

Share

 
 
 
 
 

Channels

/security /payments

Comments: (0)

Paul Penrose
Paul Penrose
Head of Research
Finextra
Member since
06 Oct 2006
Location
London
Followers
10
Following
3
Opinions
307
Unfollow

ANZ and Visa lose the plot

Don't give up the day job...ever

Now we are ten

Finextra's Best of the Web

The ATM was the last great financial innovation

See all Opinions from Paul

More expert opinions

Sara Costantini

Sara Costantini Regional Director for the UK and Ireland at CRIF

ESG expectations on banks and insurers are higher than ever - failing to meet them poses major risks

Galia Beer Gabel

Galia Beer Gabel Partner at Team8

Money Matters: How Fintech Improves Patient Outcomes

1

Dirk Labuschagne

Dirk Labuschagne Chief Information Security Officer at Direct Transact

Why and how to run a Tabletop Ransomware Simulation Exercise

Erica Andersen

Erica Andersen Marketing at smartR AI

Maintaining Enterprise Data Privacy in a Data-Hungry World

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

21,916
Expert opinions
43,959
Total members
402
New members (last 30 days)
167
New opinions (last 30 days)
28,652
Total comments
Join Sign in

Trending

Ellison Anne Williams

Ellison Anne Williams CEO at Enveil

Protecting Data Privacy within an AI-powered Threat Landscape

Damien Dugauquier

Damien Dugauquier Co-Founder & CEO at iPiD

Why Banks need an Innovation/Partnership team!

Kyrylo Reitor

Kyrylo Reitor Chief Marketing Officer at International Fintech Business

Top 5 jurisdictions to obtain EMI license in 2025

Prashant Bhardwaj

Prashant Bhardwaj Innovation Manager at Crif

Digital Arrest: A New Frontier in Cybercrime and Its Ripple Effects on Consumer Trust

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept