Case Studies

Heron Foods ensures PCI DSS compliance with Sec-1

Issue link:

Contents of this Issue


Page 0 of 1

The challenge Heron Foods' growing presence in the market meant that the company had seen a large influx of card transactions over the past three years, and was looking to update its credit card handling procedures. At the time, financial details were held by the in-house finance team, though as Heron Foods grew each year, they became aware that they would need to re-examine how they handled cardholder information to ensure that it remained compliant with PCI DSS (Payment Card Industry Data Security Standard). PCI DSS is the standard related to the storing, processing and transmitting of payment card data and it sets out 12 requirements specifying steps which should be taken to ensure payment card data is kept safe. Although all merchants must comply, those that process over 6 million transactions a year are subject to the highest level of scrutiny and must submit to audits from qualified security assessors. Heron Foods Founded in 1979, Heron Foods is one of the leading discount food retailers in the UK, with over 250 outlets located throughout Northern England and the Midlands. It primarily sells frozen food, but also offers a wide range of dry and chilled stock from named brands as well as several lines under its own brand. The company, which currently employs 2,500 staff, was acquired by B&M in August 2017 and has ambitious growth plans as it seeks to seize market share and capitalise on new trends and opportunities in the retail space. Heron Foods ensures PCI DSS compliance with Sec-1 Claranet case study Heron Foods The challenge is that PCI DSS sets a high bar and is quite a complex standard, so we needed to work alongside a company that had deep expertise in PCI DSS compliance and could tailor this knowledge to our requirements." Alex Baines - Infrastructure Manager Heron Foods "

Articles in this issue

view archives of Case Studies - Heron Foods ensures PCI DSS compliance with Sec-1