Comprehensive documentation toolkit cuts time for achieving DPA and PCI DSS-compliance readiness in half


Ely, England, 13 February 2012 – In the UK all organisations must comply with the Data Protection Act and every organisation that stores, transmits or processes card holder data must comply with the Payment Card Industry Data Security Standard (PCI DSS), which is enforced by the 'acquiring bank' through whom you have your merchant account.

Often organisations have to comply with both regulations and this requires an integrated approach to fulfilling these requirements. It is also an opportunity for companies to save time, resources and money if they carry out the projects at the same time.  Using predesigned templates, policies and procedures not only accelerates the DPA and PCI-compliance process, but by reducing the room for error, it increases the chances for success.

The DPA and PCI DSS Combination Toolkit from IT Governance is the most cost-effective and efficient option for organisations that need to meet all relevant requirements. Organisations that order the toolkit now will receive two essential pocket guides free.

Alan Calder, CEO of IT Governance, says “It costs organisations over £600 per annum to be non-compliant. Merchants that do not comply with PCI DSS have to pay higher fees to the banks. PCI DSS compliance isn’t expensive. What actually costs organisations a lot of money is to be non-compliant. They can avoid this for only £350 – the cost of our combination toolkit – which means that they will get a year one return of 150%.”

“Non-compliance poses other risks too. No retailer wants to be in the place of cosmetics company Lush who breached the Data Protection Act after the security of its website was compromised for a four month period between late 2010 and early 2011.” continues Calder. “The Information Commissioner’s Office has warned online retailers that if they do not adopt the PCI DSS standard, or provide equivalent protection when processing customers’ credit card details, they risk enforcement action. This is a clear call for action from the Government and it is in the organisation’s interest to take the necessary measures.”

Organisations who buy the DPA and PCI DSS Combination Toolkit will benefit from a full set of documents and guidance as to how to approach DPA and PCI DSS in a structured and holistic way. Organisations can buy the combination toolkit online here

In March 2012 IT Governance is offering a combination DPA and PCI Foundation Combination Course to allow organisations to tackle these important compliance issues once and for all. Delegates will learn everything they need to deal effectively with DPA and PCI. Book both courses together and save £200.

Organisations can book delegates onto this course online here: . Course places can also be booked directly with the friendly, helpful IT Governance service centre team on telephone number +44 (0)845 070 1750. Larger organisations can make bookings or purchases with a purchase order either by telephone, or by e-mail to We also welcome overseas delegates on all our courses and can provide guidance on travel and hotel arrangements.

This website uses cookies. View our cookie policy