This page contains a Flash digital edition of a book.
DATA PROTECTION
National Express was aware that customer account data losses can be very damaging to a brand
Customer protection
PCI DSS, then there is the risk of
substantial financial costs.
The expenditure required to deal
with a breach and its wider fall-
out is significant and incorporates
considerable legal fees, forensic
fees, card replacement costs and
Rupert King looks at how the Logic Group helped
fines. Furthermore customer
confidence can be fragile and
National Express on the road to PCI DSS compliance:
many will vote with their feet
if they believe that a merchant
protecting its customers’ bank card details. does not provide security for
their payment details. A recent
National Express is a brand that fraud through increased controls critical protective measures. report by Ipsos MORI bears this
requires little introduction; the around data and its exposure to This comprehensive standard is out, and found that merchants
operator is a household name compromise. intended to help organisations could expect to see customers
in the UK and over one billion The PCI DSS was developed by proactively protect customer abandoning firms that suffer
passengers use its services in the the founding payment brands account data. security breaches (53%), opting to
UK, North America and Spain. of the PCI Security Standards However customer account cancel their credit cards (48%) and
With such a large customer Council, including American data losses continue to hit the reporting them to the police (20%)
base, protecting credit and Express, Discover Financial headlines, with major data or national consumer bodies (17%).
debit card data is of course a Services, JCB International, breaches occurring regularly in National Express therefore
key priority, however National MasterCard Worldwide and the UK and all over the world required the services of a
Express is also duty-bound to Visa, to help facilitate the ensuring that many senior company with well-established
do so in accordance with the broad adoption of consistent executives have woken to specialisms in card transaction
Payment Card Industry Data data security measures. It is a uncomfortable reading in the processing and security
Security Standard (PCI DSS) multifaceted security standard daily broadsheets and tabloid consultancy that could offer a
– the worldwide information that includes requirements for press. And it goes beyond package of PCI DSS compliance
security standard created to help security management, policies, negative press stories; if the loss consulting services covering
organisations that process card procedures, network architecture, of data includes cardholder data, initial risk assessment through
payments to prevent credit card software design and other as defined within the scope of the to compliance certification,
34 CBW December 16, 2009
Page 1  |  Page 2  |  Page 3  |  Page 4  |  Page 5  |  Page 6  |  Page 7  |  Page 8  |  Page 9  |  Page 10  |  Page 11  |  Page 12  |  Page 13  |  Page 14  |  Page 15  |  Page 16  |  Page 17  |  Page 18  |  Page 19  |  Page 20  |  Page 21  |  Page 22  |  Page 23  |  Page 24  |  Page 25  |  Page 26  |  Page 27  |  Page 28  |  Page 29  |  Page 30  |  Page 31  |  Page 32  |  Page 33  |  Page 34  |  Page 35  |  Page 36  |  Page 37  |  Page 38  |  Page 39  |  Page 40  |  Page 41  |  Page 42  |  Page 43  |  Page 44  |  Page 45  |  Page 46  |  Page 47  |  Page 48  |  Page 49  |  Page 50  |  Page 51  |  Page 52  |  Page 53  |  Page 54  |  Page 55  |  Page 56  |  Page 57  |  Page 58  |  Page 59  |  Page 60  |  Page 61  |  Page 62  |  Page 63  |  Page 64
Produced with Yudu - www.yudu.com