Community
Despite all the bleating about PCI over the years, I found it to be too weak.
With all the focus on Cardholder Data - as being that on the Mag Stripe - namely Cardnumber, Cardholder Name, Expiry Date and Security Code - I found many Merchants & Service Providers treated it as a 'max' rather than 'min' level of security.
I performed due diligences on places where lots of other personal data such as Mothers Maiden Name, Cardholder Address, Phone Number, e-mail address, Date of Birth, Passport Number, Gender, Religion, etc etc was never encrypted, simply because PCI itself didn't tell them to do so.
This content is provided by an external author without editing by Finextra. It expresses the views and opinions of the author.
Serhii Bondarenko Artificial Intelegence at Tickeron
21 hours
Prashant Bansal Sr. Principal Consultant at Oracle
28 July
Carlo R.W. De Meijer Owner and Economist at MIFSA
Steve Morgan Banking Industry Market Lead at Pegasystems
Welcome to Finextra. We use cookies to help us to deliver our services. You may change your preferences at our Cookie Centre.
Please read our Privacy Policy.