Community

Join the Community

23,396
Expert opinions
42,305
Total members
310
New members (last 30 days)
182
New opinions (last 30 days)
29,111
Total comments
Join Sign in

PCI compliance through the looking glass

  0 Be the first to comment
Paul Penrose
Paul Penrose
Head of Research
Finextra
Location
London
Followers
12
Opinions
307
Unfollow

This whole PCI DSS compliance thing is beginning to make my head hurt.

Here, Visa chief enterprise risk officer Ellen Richey says: "PCI DSS remains an effective security tool when implemented properly - and remains the best defense against the loss of sensitive data. No compromised entity to date has been found to be in compliance with PCI DSS at the time of the breach."

So neither Hearltand Payment Systems or RBS WorldPay were PCI-compliant when they were looted by Internet criminals earlier this year?

Well, er, yes...and no. Both had received certification from Visa, but that certification measures compliance only at the time of the audit.

It's a clever get-out for Visa, fearing repercussion from future legal tussles with banks and card customers. On the one hand, it can claim that the industry is working to clean up its act by enforcing the standard - and on the other, that compliance certification is worthless after the fact.

It's a distinction that would make Lewis Carroll proud.

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

4090
 

Share

 
 
 
 
 

Channels

/security /payments

Comments: (0)

Paul Penrose
Paul Penrose
Head of Research
Finextra
Member since
06 Oct 2006
Location
London
Followers
12
Following
2
Opinions
307
Unfollow

ANZ and Visa lose the plot

Don't give up the day job...ever

Now we are ten

Finextra's Best of the Web

The ATM was the last great financial innovation

See all Opinions from Paul

More expert opinions

David Weinstein

David Weinstein Co-founder and CEO at KayOS

From Bottlenecks to Leverage: Re-architecting Scaleup Operations with AI Agents

1

Cliff Bunting

Cliff Bunting Director at PurplePatch Broking Ltd

The Bureau billing errors costing firms millions

Bo Harald

Bo Harald Chairman/Founding member, board member at Trust Infra for Real Time Economy Prgrm & MyData,

Impressions from Global Digital Collaboration 2025

2

Nikunj Gundaniya

Nikunj Gundaniya Product manager at Digipay.guru

Which Wallet Solution Matches Your Business Model: eWallet or Digital Wallet?

See all opinions

External

This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.

Join the Community

23,396
Expert opinions
42,305
Total members
310
New members (last 30 days)
182
New opinions (last 30 days)
29,111
Total comments
Join Sign in

Trending

Frank Moreno

Frank Moreno CMO at Entersekt

Trusted devices and silent signals could help FIs improve fraud protection

Alex Kreger

Alex Kreger Founder and CEO at UXDA Financial UX Design

Banking on Intelligence: The Global Sprint to AI Maturity in Finance

Carlo R.W. De Meijer

Carlo R.W. De Meijer Owner and Economist at MIFSA

Banks and Stablecoins: a first step towards bridging traditional finance and the crypto world

Steve Wilcockson

Steve Wilcockson Technical Product Marketing at Quantexa

Agentic AI Beyond the Buzzwords

Now Hiring

All companies

Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.

Please read our Privacy Policy.

Accept