Princeton Softech, a provider of enterprise data management, reminds UK businesses not to overlook the mandatory need to mask and de-identify data in alive test environment in the race to become compliant with the new Payment Card Industry Data Security Standard (PCI DSS).
Companies handling credit card data must conform by 30 June 2007 or face fines in excess of EUR100,000 (67,000) per incident or data breach.
“Recent research indicates that 97 per cent of these businesses are currently not compliant,” says Paul Garstang, senior account manager, Princeton Softech. “As they rush to meet the deadline, they need to be aware that test data management (TDM) is a key part of the PCI DSS initiative and must not be neglected.
“Many believe encrypting data is sufficient in itself. It is not,” he adds.