Welcome!

Microservices Expo Authors: Pat Romanski, Flint Brenton, Elizabeth White, Liz McMillan, Jason Bloomberg

News Feed Item

New White Paper From Prologic Provides Step-by-Step Guide to PCI Compliance for Fashion Retailers

- Prologic White Paper, 'The Challenge of PCI Compliance for Multi-Channel Retailers', http://tr.im/zlmm Explains the Need for an Integrated PCI Strategy to Ensure Business Efficiency and Customer Satisfaction

LONDON, September 24 /PRNewswire/ -- A new White Paper, entitled 'The challenge of PCI compliance for multi-channel retailers' by fashion business systems provider, Prologic http://www.prologic.com highlights the dangers of taking an un-integrated, quick-fix approach to PCI compliance. The White Paper http://tr.im/zlmF provides a step-by-step guide to PCI compliance for fashion retailers who are looking to achieve low-cost PCI compliance without compromising the increasingly important multi-channel business world.

PCI compliance for fashion retailers is essential as failure to comply with PCI standards exposes a retailer to two types of liability:

    
    - The contract with the card issuer provides for substantial penalties
    and, more significantly,

    - Retailers are subject to "charge-back" liability for damages suffered
    by the card issuer as a result of a data breach.

These losses sustained by card issuers include not only the fraudulent charges made on the accounts of the victims of identity theft, but also the administrative costs associated with the issuance of new cards to customers whose personal information may have been compromised. As a result, these costs can be significant. Add in the damage to reputation associated with the loss of customer card details, and the importance of PCI compliance becomes clear.

Commenting on the options available to mid-sized retailers looking to ensure PCI compliance, Sam Jackson, chief executive of Prologic says, "One route is to buy pre-packaged payments systems, such as handheld Chip & PIN devices and off-the-shelf web payment gateways, that are already compliant. However, whilst this simplifies the compliance process it can also constrain the business. Many retailers have worked hard to achieve an integrated multi-channel business model. Therefore, adopting these simple, separate payment systems can be a retrograde step which takes retailers back to a less integrated business model, or prevents them moving toward one."

Jackson continues, "The best strategy to ensure PCI compliance for multi-channel retailers is to work with a vendor that has integrated multi-channel solutions and has already embarked upon a Level 1 PCI compliance process for the entire end-to-end suite. With this approach, the onus is on the vendor to ascertain the underlying software, hardware and wide area network components required to gain and maintain PCI compliance. This model not only ensures that retailers retain the benefits of an integrated multi-channel strategy but also have a fast track, low cost route to PCI compliance, not just today but for the future where an integrated approach to multi-channel trading will become ever more important."

The Prologic White Paper, 'The Challenge of PCI compliance for multi-channel retailers' provides practical advice and guidance to retailers looking to adhere to the latest PCI standards and covers a number of key issues including: the different levels of PCI compliance, the six major categories within the PCI framework, within these six categories the 12 requirements that address particular technical issues and web application security, the limitations of pre-accredited PCI solutions and the benefits of an integrated PCI approach.

Jackson continues, "PCI compliance for fashion retailers is not a one-off issue; it requires an annual audit or self-assessment. Indeed, the payment card industry is in an endless arms race with the hackers and fraudsters. As the criminals get ever more sophisticated, PCI and retailers have to up the ante and implement ever more sophisticated security standards. So opting to retrench today by casting out all the benefits that integrated technology can bring in terms of efficiency and improved customer service may solve the immediate PCI problem. But it is a short term fix that will be at the expense of future business efficiency and customer satisfaction."

Jackson concludes, "Fashion businesses are moving ever more deeply into integrated multi-channel retailing. Those who have adopted ad-hoc systems to get round short term PCI problems will sooner or later need to reintegrate their systems to compete with the market leaders. The best of both worlds is low cost PCI compliance for fashion retailers without compromising the increasingly important multi-channel business model." The White Paper, 'The Challenge of PCI compliance for multi-channel retailers' is available free of charge. Business managers and directors can download a copy of the White Paper from http://tr.im/zlmm

About Prologic

Stock market-listed, Prologic is a specialist provider of software, services and consultancy to the fashion & lifestyle sector. The company's enterprise software application, CIMS, is a web-deployed, single solution, multi-channel business system designed to meet the complex needs of the sector. Modules include planning, merchandising, store systems, sourcing, warehousing, wholesale, franchise, eCommerce and reporting.

Prologic's approach of delivering its software as a single version, single database product, based on continuous customer-driven improvement, provides distinct advantages over the traditional practice of interfacing disparate point solutions.

With a track record extending over two decades, Prologic has supported the growth of many of the UK's best known and most successful brands. Customers include Aquascutum, Fat Face, Hobbs, Liberty, Paul Smith, Ted Baker, TM Lewin, White Stuff and many other high street names.

    
    For further information, please contact:

    Will Gardiner       Manuela Spinnler
    itpr                Head of Marketing
    +44(0)1932-578800   Prologic plc
                        +44(0)1442-876277

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

@MicroservicesExpo Stories
Learn how to solve the problem of keeping files in sync between multiple Docker containers. In his session at 16th Cloud Expo, Aaron Brongersma, Senior Infrastructure Engineer at Modulus, discussed using rsync, GlusterFS, EBS and Bit Torrent Sync. He broke down the tools that are needed to help create a seamless user experience. In the end, can we have an environment where we can easily move Docker containers, servers, and volumes without impacting our applications? He shared his results so yo...
Don’t go chasing waterfall … development, that is. According to a recent post by Madison Moore on Medium featuring insights from several software delivery industry leaders, waterfall is – while still popular – not the best way to win in the marketplace. With methodologies like Agile, DevOps and Continuous Delivery becoming ever more prominent over the past 15 years or so, waterfall is old news. Or, is it? Moore cites a recent study by Gartner: “According to Gartner’s IT Key Metrics Data report, ...
Kubernetes is a new and revolutionary open-sourced system for managing containers across multiple hosts in a cluster. Ansible is a simple IT automation tool for just about any requirement for reproducible environments. In his session at @DevOpsSummit at 18th Cloud Expo, Patrick Galbraith, a principal engineer at HPE, discussed how to build a fully functional Kubernetes cluster on a number of virtual machines or bare-metal hosts. Also included will be a brief demonstration of running a Galera MyS...
Enterprise architects are increasingly adopting multi-cloud strategies as they seek to utilize existing data center assets, leverage the advantages of cloud computing and avoid cloud vendor lock-in. This requires a globally aware traffic management strategy that can monitor infrastructure health across data centers and end-user experience globally, while responding to control changes and system specification at the speed of today’s DevOps teams. In his session at 20th Cloud Expo, Josh Gray, Chie...
Many organizations are now looking to DevOps maturity models to gauge their DevOps adoption and compare their maturity to their peers. However, as enterprise organizations rush to adopt DevOps, moving past experimentation to embrace it at scale, they are in danger of falling into the trap that they have fallen into time and time again. Unfortunately, we've seen this movie before, and we know how it ends: badly.
Agile has finally jumped the technology shark, expanding outside the software world. Enterprises are now increasingly adopting Agile practices across their organizations in order to successfully navigate the disruptive waters that threaten to drown them. In our quest for establishing change as a core competency in our organizations, this business-centric notion of Agile is an essential component of Agile Digital Transformation. In the years since the publication of the Agile Manifesto, the conn...
"I focus on what we are calling CAST Highlight, which is our SaaS application portfolio analysis tool. It is an extremely lightweight tool that can integrate with pretty much any build process right now," explained Andrew Siegmund, Application Migration Specialist for CAST, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
In IT, we sometimes coin terms for things before we know exactly what they are and how they’ll be used. The resulting terms may capture a common set of aspirations and goals – as “cloud” did broadly for on-demand, self-service, and flexible computing. But such a term can also lump together diverse and even competing practices, technologies, and priorities to the point where important distinctions are glossed over and lost.
"I will be talking about ChatOps and ChatOps as a way to solve some problems in the DevOps space," explained Himanshu Chhetri, CTO of Addteq, in this SYS-CON.tv interview at @DevOpsSummit at 20th Cloud Expo, held June 6-8, 2017, at the Javits Center in New York City, NY.
For organizations that have amassed large sums of software complexity, taking a microservices approach is the first step toward DevOps and continuous improvement / development. Integrating system-level analysis with microservices makes it easier to change and add functionality to applications at any time without the increase of risk. Before you start big transformation projects or a cloud migration, make sure these changes won’t take down your entire organization.
The Jevons Paradox suggests that when technological advances increase efficiency of a resource, it results in an overall increase in consumption. Writing on the increased use of coal as a result of technological improvements, 19th-century economist William Stanley Jevons found that these improvements led to the development of new ways to utilize coal. In his session at 19th Cloud Expo, Mark Thiele, Chief Strategy Officer for Apcera, compared the Jevons Paradox to modern-day enterprise IT, examin...
The taxi industry never saw Uber coming. Startups are a threat to incumbents like never before, and a major enabler for startups is that they are instantly “cloud ready.” If innovation moves at the pace of IT, then your company is in trouble. Why? Because your data center will not keep up with frenetic pace AWS, Microsoft and Google are rolling out new capabilities. In his session at 20th Cloud Expo, Don Browning, VP of Cloud Architecture at Turner, posited that disruption is inevitable for comp...
When you focus on a journey from up-close, you look at your own technical and cultural history and how you changed it for the benefit of the customer. This was our starting point: too many integration issues, 13 SWP days and very long cycles. It was evident that in this fast-paced industry we could no longer afford this reality. We needed something that would take us beyond reducing the development lifecycles, CI and Agile methodologies. We made a fundamental difference, even changed our culture...
High-velocity engineering teams are applying not only continuous delivery processes, but also lessons in experimentation from established leaders like Amazon, Netflix, and Facebook. These companies have made experimentation a foundation for their release processes, allowing them to try out major feature releases and redesigns within smaller groups before making them broadly available. In his session at 21st Cloud Expo, Brian Lucas, Senior Staff Engineer at Optimizely, discussed how by using ne...
In his session at 20th Cloud Expo, Mike Johnston, an infrastructure engineer at Supergiant.io, discussed how to use Kubernetes to set up a SaaS infrastructure for your business. Mike Johnston is an infrastructure engineer at Supergiant.io with over 12 years of experience designing, deploying, and maintaining server and workstation infrastructure at all scales. He has experience with brick and mortar data centers as well as cloud providers like Digital Ocean, Amazon Web Services, and Rackspace. H...
Without a clear strategy for cost control and an architecture designed with cloud services in mind, costs and operational performance can quickly get out of control. To avoid multiple architectural redesigns requires extensive thought and planning. Boundary (now part of BMC) launched a new public-facing multi-tenant high resolution monitoring service on Amazon AWS two years ago, facing challenges and learning best practices in the early days of the new service.
In his general session at 19th Cloud Expo, Manish Dixit, VP of Product and Engineering at Dice, discussed how Dice leverages data insights and tools to help both tech professionals and recruiters better understand how skills relate to each other and which skills are in high demand using interactive visualizations and salary indicator tools to maximize earning potential. Manish Dixit is VP of Product and Engineering at Dice. As the leader of the Product, Engineering and Data Sciences team at D...
You often hear the two titles of "DevOps" and "Immutable Infrastructure" used independently. In his session at DevOps Summit, John Willis, Technical Evangelist for Docker, covered the union between the two topics and why this is important. He provided an overview of Immutable Infrastructure then showed how an Immutable Continuous Delivery pipeline can be applied as a best practice for "DevOps." He ended the session with some interesting case study examples.
Both SaaS vendors and SaaS buyers are going “all-in” to hyperscale IaaS platforms such as AWS, which is disrupting the SaaS value proposition. Why should the enterprise SaaS consumer pay for the SaaS service if their data is resident in adjacent AWS S3 buckets? If both SaaS sellers and buyers are using the same cloud tools, automation and pay-per-transaction model offered by IaaS platforms, then why not host the “shrink-wrapped” software in the customers’ cloud? Further, serverless computing, cl...
Without lifecycle traceability and visibility across the tool chain, stakeholders from Planning-to-Ops have limited insight and answers to who, what, when, why and how across the DevOps lifecycle. This impacts the ability to deliver high quality software at the needed velocity to drive positive business outcomes. In his general session at @DevOpsSummit at 19th Cloud Expo, Eric Robertson, General Manager at CollabNet, will discuss how customers are able to achieve a level of transparency that e...