Click here to close now.


Microservices Expo Authors: Janakiram MSV, Jason Bloomberg, Carmen Gonzalez, Elizabeth White, Victoria Livschitz

News Feed Item

New White Paper From Prologic Provides Step-by-Step Guide to PCI Compliance for Fashion Retailers

- Prologic White Paper, 'The Challenge of PCI Compliance for Multi-Channel Retailers', Explains the Need for an Integrated PCI Strategy to Ensure Business Efficiency and Customer Satisfaction

LONDON, September 24 /PRNewswire/ -- A new White Paper, entitled 'The challenge of PCI compliance for multi-channel retailers' by fashion business systems provider, Prologic highlights the dangers of taking an un-integrated, quick-fix approach to PCI compliance. The White Paper provides a step-by-step guide to PCI compliance for fashion retailers who are looking to achieve low-cost PCI compliance without compromising the increasingly important multi-channel business world.

PCI compliance for fashion retailers is essential as failure to comply with PCI standards exposes a retailer to two types of liability:

    - The contract with the card issuer provides for substantial penalties
    and, more significantly,

    - Retailers are subject to "charge-back" liability for damages suffered
    by the card issuer as a result of a data breach.

These losses sustained by card issuers include not only the fraudulent charges made on the accounts of the victims of identity theft, but also the administrative costs associated with the issuance of new cards to customers whose personal information may have been compromised. As a result, these costs can be significant. Add in the damage to reputation associated with the loss of customer card details, and the importance of PCI compliance becomes clear.

Commenting on the options available to mid-sized retailers looking to ensure PCI compliance, Sam Jackson, chief executive of Prologic says, "One route is to buy pre-packaged payments systems, such as handheld Chip & PIN devices and off-the-shelf web payment gateways, that are already compliant. However, whilst this simplifies the compliance process it can also constrain the business. Many retailers have worked hard to achieve an integrated multi-channel business model. Therefore, adopting these simple, separate payment systems can be a retrograde step which takes retailers back to a less integrated business model, or prevents them moving toward one."

Jackson continues, "The best strategy to ensure PCI compliance for multi-channel retailers is to work with a vendor that has integrated multi-channel solutions and has already embarked upon a Level 1 PCI compliance process for the entire end-to-end suite. With this approach, the onus is on the vendor to ascertain the underlying software, hardware and wide area network components required to gain and maintain PCI compliance. This model not only ensures that retailers retain the benefits of an integrated multi-channel strategy but also have a fast track, low cost route to PCI compliance, not just today but for the future where an integrated approach to multi-channel trading will become ever more important."

The Prologic White Paper, 'The Challenge of PCI compliance for multi-channel retailers' provides practical advice and guidance to retailers looking to adhere to the latest PCI standards and covers a number of key issues including: the different levels of PCI compliance, the six major categories within the PCI framework, within these six categories the 12 requirements that address particular technical issues and web application security, the limitations of pre-accredited PCI solutions and the benefits of an integrated PCI approach.

Jackson continues, "PCI compliance for fashion retailers is not a one-off issue; it requires an annual audit or self-assessment. Indeed, the payment card industry is in an endless arms race with the hackers and fraudsters. As the criminals get ever more sophisticated, PCI and retailers have to up the ante and implement ever more sophisticated security standards. So opting to retrench today by casting out all the benefits that integrated technology can bring in terms of efficiency and improved customer service may solve the immediate PCI problem. But it is a short term fix that will be at the expense of future business efficiency and customer satisfaction."

Jackson concludes, "Fashion businesses are moving ever more deeply into integrated multi-channel retailing. Those who have adopted ad-hoc systems to get round short term PCI problems will sooner or later need to reintegrate their systems to compete with the market leaders. The best of both worlds is low cost PCI compliance for fashion retailers without compromising the increasingly important multi-channel business model." The White Paper, 'The Challenge of PCI compliance for multi-channel retailers' is available free of charge. Business managers and directors can download a copy of the White Paper from

About Prologic

Stock market-listed, Prologic is a specialist provider of software, services and consultancy to the fashion & lifestyle sector. The company's enterprise software application, CIMS, is a web-deployed, single solution, multi-channel business system designed to meet the complex needs of the sector. Modules include planning, merchandising, store systems, sourcing, warehousing, wholesale, franchise, eCommerce and reporting.

Prologic's approach of delivering its software as a single version, single database product, based on continuous customer-driven improvement, provides distinct advantages over the traditional practice of interfacing disparate point solutions.

With a track record extending over two decades, Prologic has supported the growth of many of the UK's best known and most successful brands. Customers include Aquascutum, Fat Face, Hobbs, Liberty, Paul Smith, Ted Baker, TM Lewin, White Stuff and many other high street names.

    For further information, please contact:

    Will Gardiner       Manuela Spinnler
    itpr                Head of Marketing
    +44(0)1932-578800   Prologic plc

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

@MicroservicesExpo Stories
In a report titled “Forecast Analysis: Enterprise Application Software, Worldwide, 2Q15 Update,” Gartner analysts highlighted the increasing trend of application modernization among enterprises. According to a recent survey, 45% of respondents stated that modernization of installed on-premises core enterprise applications is one of the top five priorities. Gartner also predicted that by 2020, 75% of
Despite all the talk about public cloud services and DevOps, you would think the move to cloud for enterprises is clear and simple. But in a survey of almost 1,600 IT decision makers across the USA and Europe, the state of the cloud in enterprise today is still fraught with considerable frustration. The business case for apps in the real world cloud is hybrid, bimodal, multi-platform, and difficult. Download this report commissioned by NTT Communications to see the insightful findings – registra...
DevOps Summit at Cloud Expo 2014 Silicon Valley was a terrific event for us. The Qubell booth was crowded on all three days. We ran demos every 30 minutes with folks lining up to get a seat and usually standing around. It was great to meet and talk to over 500 people! My keynote was well received and so was Stan's joint presentation with RingCentral on Devops for BigData. I also participated in two Power Panels – ‘Women in Technology’ and ‘Why DevOps Is Even More Important than You Think,’ both ...
Docker is hot. However, as Docker container use spreads into more mature production pipelines, there can be issues about control of Docker images to ensure they are production-ready. Is a promotion-based model appropriate to control and track the flow of Docker images from development to production? In his session at DevOps Summit, Fred Simon, Co-founder and Chief Architect of JFrog, will demonstrate how to implement a promotion model for Docker images using a binary repository, and then show h...
As the world moves towards more DevOps and microservices, application deployment to the cloud ought to become a lot simpler. The microservices architecture, which is the basis of many new age distributed systems such as OpenStack, NetFlix and so on, is at the heart of Cloud Foundry - a complete developer-oriented Platform as a Service (PaaS) that is IaaS agnostic and supports vCloud, OpenStack and AWS. In his session at 17th Cloud Expo, Raghavan "Rags" Srinivas, an Architect/Developer Evangeli...
DevOps has often been described in terms of CAMS: Culture, Automation, Measuring, Sharing. While we’ve seen a lot of focus on the “A” and even on the “M”, there are very few examples of why the “C" is equally important in the DevOps equation. In her session at @DevOps Summit, Lori MacVittie, of F5 Networks, will explore HTTP/1 and HTTP/2 along with Microservices to illustrate why a collaborative culture between Dev, Ops, and the Network is critical to ensuring success.
Our guest on the podcast this week is Jason Bloomberg, President at Intellyx. When we build services we want them to be lightweight, stateless and scalable while doing one thing really well. In today's cloud world, we're revisiting what to takes to make a good service in the first place. Listen in to learn why following "the book" doesn't necessarily mean that you're solving key business problems.
Application availability is not just the measure of “being up”. Many apps can claim that status. Technically they are running and responding to requests, but at a rate which users would certainly interpret as being down. That’s because excessive load times can (and will be) interpreted as “not available.” That’s why it’s important to view ensuring application availability as requiring attention to all its composite parts: scalability, performance, and security.
In their session at DevOps Summit, Asaf Yigal, co-founder and the VP of Product at, and Tomer Levy, co-founder and CEO of, will explore the entire process that they have undergone – through research, benchmarking, implementation, optimization, and customer success – in developing a processing engine that can handle petabytes of data. They will also discuss the requirements of such an engine in terms of scalability, resilience, security, and availability along with how the archi...
Overgrown applications have given way to modular applications, driven by the need to break larger problems into smaller problems. Similarly large monolithic development processes have been forced to be broken into smaller agile development cycles. Looking at trends in software development, microservices architectures meet the same demands. Additional benefits of microservices architectures are compartmentalization and a limited impact of service failure versus a complete software malfunction....
The last decade was about virtual machines, but the next one is about containers. Containers enable a service to run on any host at any time. Traditional tools are starting to show cracks because they were not designed for this level of application portability. Now is the time to look at new ways to deploy and manage applications at scale. In his session at @DevOpsSummit, Brian “Redbeard” Harrington, a principal architect at CoreOS, will examine how CoreOS helps teams run in production. Attende...
For it to be SOA – let alone SOA done right – we need to pin down just what "SOA done wrong" might be. First-generation SOA with Web Services and ESBs, perhaps? But then there's second-generation, REST-based SOA. More lightweight and cloud-friendly, but many REST-based SOA practices predate the microservices wave. Today, microservices and containers go hand in hand – only the details of "container-oriented architecture" are largely on the drawing board – and are not likely to look much like S...
Any Ops team trying to support a company in today’s cloud-connected world knows that a new way of thinking is required – one just as dramatic than the shift from Ops to DevOps. The diversity of modern operations requires teams to focus their impact on breadth vs. depth. In his session at DevOps Summit, Adam Serediuk, Director of Operations at xMatters, Inc., will discuss the strategic requirements of evolving from Ops to DevOps, and why modern Operations has begun leveraging the “NoOps” approa...
With containerization using Docker, the orchestration of containers using Kubernetes, the self-service model for provisioning your projects and applications and the workflows we built in OpenShift is the best in class Platform as a Service that enables introducing DevOps into your organization with ease. In his session at DevOps Summit, Veer Muchandi, PaaS evangelist with RedHat, will provide a deep dive overview of OpenShift v3 and demonstrate how it helps with DevOps.
All we need to do is have our teams self-organize, and behold! Emergent design and/or architecture springs up out of the nothingness! If only it were that easy, right? I follow in the footsteps of so many people who have long wondered at the meanings of such simple words, as though they were dogma from on high. Emerge? Self-organizing? Profound, to be sure. But what do we really make of this sentence?
Containers are changing the security landscape for software development and deployment. As with any security solutions, security approaches that work for developers, operations personnel and security professionals is a requirement. In his session at @DevOpsSummit, Kevin Gilpin, CTO and Co-Founder of Conjur, will discuss various security considerations for container-based infrastructure and related DevOps workflows.
Last month, my partners in crime – Carmen DeArdo from Nationwide, Lee Reid, my colleague from IBM and I wrote a 3-part series of blog posts on We titled our posts the Simple Math, Calculus and Art of DevOps. I would venture to say these are must-reads for any organization adopting DevOps. We examined all three ascpects – the Cultural, Automation and Process improvement side of DevOps. One of the key underlying themes of the three posts was the need for Cultural change – things like t...
There once was a time when testers operated on their own, in isolation. They’d huddle as a group around the harsh glow of dozens of CRT monitors, clicking through GUIs and recording results. Anxiously, they’d wait for the developers in the other room to fix the bugs they found, yet they’d frequently leave the office disappointed as issues were filed away as non-critical. These teams would rarely interact, save for those scarce moments when a coder would wander in needing to reproduce a particula...
It is with great pleasure that I am able to announce that Jesse Proudman, Blue Box CTO, has been appointed to the position of IBM Distinguished Engineer. Jesse is the first employee at Blue Box to receive this honor, and I’m quite confident there will be more to follow given the amazing talent at Blue Box with whom I have had the pleasure to collaborate. I’d like to provide an overview of what it means to become an IBM Distinguished Engineer.
The cloud has reached mainstream IT. Those 18.7 million data centers out there (server closets to corporate data centers to colocation deployments) are moving to the cloud. In his session at 17th Cloud Expo, Achim Weiss, CEO & co-founder of ProfitBricks, will share how two companies – one in the U.S. and one in Germany – are achieving their goals with cloud infrastructure. More than a case study, he will share the details of how they prioritized their cloud computing infrastructure deployments ...