So why should an entity bother spending money and manpower on achieving PCI DSS compliance?

Benefits of compliance:

    • Increased security levels

    • Avoid loss of reputation and public trust in case of breach

    • Avoid Card Scheme penalties for non compliance

    • Full protection from penalties if breached when PCI compliant

    • Enhanced information security reputation

    • Extra customer comfort level

  • Sales opportunity to vend ‘compliant services’

Risks of non-compliance:

    • Increased risk of data breach

    • Significant damage to reputation and public trust when systems are breached, taking off your bottom line

    • Potential for non compliance fines

    • Substantial fines imposed for any data breach

  • Loss of right to conduct business using credit/debit card for payment in a worst case scenario