Home Business News Record GDPR fine provides stark warning to business owners

Record GDPR fine provides stark warning to business owners

by LLB Reporter
9th Jul 19 12:48 pm

With reports confirming that British Airways are to be fined £183m by the Information Commissioner’s Office (ICO) following a significant data breach last year, PCI Pal’s CEO James Barham is encouraging businesses to step-up data protection processes and utilise descoping payment security technologies, so no sensitive card data is available to hackers.

It was reported that approximately 380,000 transactions were affected in the breach, with compromised data including names, email addresses and some credit and debit card information.

James Barham, CEO of PCI Pal said, “Payment card data is the ultimate reward for hackers therefore businesses need to look at all areas of potential vulnerability in both their systems and processes. It is vital to identify solutions that can prevent such breaches from occurring, which will not only help avoid hefty financial penalties, but also the loss in customer confidence and reputational damage.

“Today, businesses can avoid storing payment card data by using descoping technologies. If integrated into contact centres, sensitive data will never enter the enterprise when payments are transacted over the phone, meaning the risk is removed.

Barham added, “By using the right secure payment technologies to simplify a company’s route to PCI compliance, ultimately data security is improved so much so that it is as though card data is not handled in the first place. Additionally, utilising technology in this regard clearly demonstrates to customers that the company they are dealing with has taken steps to secure their data.”

PCI Pal secures payments for some of the largest companies in a range of markets, including retail, services, logistics, and utilities. It provides secure payment solutions for contact centres and businesses taking Cardholder Not Present (CNP) payments.

PCI Pal’s globally accessible cloud platform empowers organisations to take payments securely without bringing their environments into scope of PCI DSS and other relevant data security rules and regulations.

You may also like

Leave a Comment


Sign up to our daily news alerts