Questions? +1 (202) 540-8337 Login
Trusted News Since 1995
A service for global professionals · Thursday, October 18, 2018 · 465,488,835 Articles · 3+ Million Readers

Customers’ payment card data at risk with nearly half of organisations not fully compliant with regulations

IT Governance, the global cybersecurity experts.

ELY, CAMBRIDGESHIRE, UNITED KINGDOM, October 18, 2017 / -- A recent security report shows that nearly half of organisations are not fully compliant with payment card data regulations, putting customers’ card details at risk.

The Payment Card Industry Data Security Standard (PCI DSS) is designed to reduce the risk of a data breach and potential fraud by implementing policies surrounding encryption, access and authentication, physical security and retention of data.

The Verizon 2017 Payment Security Report revealed that only 55.4% of organisations showed full compliance with the PCI DSS. The retail industry displayed only 60% compliance with regulation number 12: ‘maintain information security policies’.

The 2017 Data Breach report confirmed that 73% of data breaches were financially motivated. Therefore the importance of employees being able to spot potential threats, such as tampered card readers and suspicious activity, is critical.

Alan Calder, founder and executive chairman of IT Governance, said: “Organisations looking to deal effectively with their customers should be providing safe and secure transactions using methods set out in the PCI DSS. Making staff aware of the policies and practical applications in reducing risk can improve the data security environment and prevent reputational damage for the organisation in the case of a data breach.”

IT Governance offers a comprehensive Security Awareness Programme to help organisations build and maintain a culture of data security. Tailored to each business’ requirements, the programme provides a bespoke training platform that informs and improves employee understanding of compliance to mitigate the risk of payment card fraud.

Benefits of the programme:

• Analysis of current needs from an experienced consultant.
• Report and recommendations for achieving your training objectives.
• A tailored project plan for delivery.
• Constructive evaluation to address continued awareness following initial training.

Visit our enquiry page to speak with a consultant about your security awareness needs.

To find out more about our products and services, visit the website, email or call +44 (0)845 070 1750.

- Ends -


IT Governance Ltd is the single-source provider of books, tools, training and consultancy for IT governance, risk management and compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at

Mihaela Jucan
IT Governance Ltd
email us here

Powered by EIN Presswire