The General Data Protection Regulation (GDPR) deadline of 25 May 2018 is fast approaching. Like many others, you’re probably feeling anxious about your organizations’ GDPR compliance. GDPR brings about a far trickier regulatory environment and the fines for non-compliance with GDPR are hefty to say the least.
However, if your organisation controls and stores cardholder data then in my opinion you can breathe a small sigh of relief. The reason is that your organization is already required to comply with the Payment Card Industry Data Security Standard (PCI DSS), which has got a lot in common with the GDPR.
PCI DSS - the Payment Card Industry Data Security Standard - regulates merchants and service providers that store, process or transmit cardholder data. Naturally, as the payment card industry environment continues to change so too must PCI DSS. If you’re responsible for PCI compliance in your organization you therefore need to stay abreast of any new PCI requirements that are coming into effect and make sure your company is compliant.
Topics: PCI Compliance