April 29, 2009 - 9:19am
Breach Security, Inc. and Evolution Security Systems Ltd together published their 2008 UK PCI Compliance Report. They surveyed UK organizations of different market sectors, including healthcare, government, e-commerce, finance and banking. As it was found in the course of the survey PCI compliance is important to 80% of UK organizations. Also, 57% of UK organizations are PCI compliant or make an effort to be compliant. Together with indicating a good progress as a whole, this findings show that UK is trailing USA in PCI compliance.
Meantime, this survey shows that 16% of respondents are in the dark about what it's meant to be PCI compliant. About 20% of organizations don't know that being PCI compliant is important. AS Sanjay Mehta, SVP for Breach Security, commented these findings "sensitive customer and cardholder data is in jeopardy for many of the online transactions that take place". "Without the protection afforded by PCI compliance, the data security of organizations is at risk" as he added later.
Dale Moreton, head of sales and marketing at Evolution Security Systems, noted that PCI compliance becomes a significant priority in US and all over the world and he is sure that "UK organizations need to wake up to the threat."
Again according to the report results one third of UK organizations are not going to become PCI compliant, while 18% are planning to become compliant in three to six months, 11 % in six months to 1 year, and 5 % of organizations in more than one year.
Compliance requirements to protect customers were established by the Payment Card Industry (PCI) by including web application security requirements in its Data Security Standard (DSS). All organizations that work with payment cards allegedly must be in compliance with the PCI DDS.
Meantime, this survey shows that 16% of respondents are in the dark about what it's meant to be PCI compliant. About 20% of organizations don't know that being PCI compliant is important. AS Sanjay Mehta, SVP for Breach Security, commented these findings "sensitive customer and cardholder data is in jeopardy for many of the online transactions that take place". "Without the protection afforded by PCI compliance, the data security of organizations is at risk" as he added later.
Dale Moreton, head of sales and marketing at Evolution Security Systems, noted that PCI compliance becomes a significant priority in US and all over the world and he is sure that "UK organizations need to wake up to the threat."
Again according to the report results one third of UK organizations are not going to become PCI compliant, while 18% are planning to become compliant in three to six months, 11 % in six months to 1 year, and 5 % of organizations in more than one year.
Compliance requirements to protect customers were established by the Payment Card Industry (PCI) by including web application security requirements in its Data Security Standard (DSS). All organizations that work with payment cards allegedly must be in compliance with the PCI DDS.