Community
Despite all the bleating about PCI over the years, I found it to be too weak.
With all the focus on Cardholder Data - as being that on the Mag Stripe - namely Cardnumber, Cardholder Name, Expiry Date and Security Code - I found many Merchants & Service Providers treated it as a 'max' rather than 'min' level of security.
I performed due diligences on places where lots of other personal data such as Mothers Maiden Name, Cardholder Address, Phone Number, e-mail address, Date of Birth, Passport Number, Gender, Religion, etc etc was never encrypted, simply because PCI itself didn't tell them to do so.
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.
Igor Kostyuchenok SVP of Engineering at Mbanq
28 May
Carlo R.W. De Meijer Owner and Economist at MIFSA
Alisa Zejnilovic B2B Marketing at Klika
27 May
Nkahiseng Ralepeli VP of Product: Digital Assets at Absa Bank, CIB.
Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.
Please read our Privacy Policy.