RE: Is PCI Compliance Mandatory

["Abimbola, Abiola" <Abiola.Abimbola () bskyb com>]

Yes , you do if you still process credit cards

Abiola Abimbola
Information Security Analyst
BSkyB (England)
1111-5409
-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of global.infosec () gmail com
Sent: 12 January 2008 10:32
To: security-basics () securityfocus com
Subject: Is PCI Compliance Mandatory

Recently our organisation decided not to store credit card numbers in
our databases of our retail outlets.

Do we still need to comply to PCI DSS?




-----------------------------------------
Information in this email including any attachments may be
privileged, confidential and is intended exclusively for the
addressee. The views expressed may not be official policy, but the
personal views of the originator. If you have received it in error,
please notify the sender by return e-mail and delete it from your
system. You should not reproduce, distribute, store, retransmit,
use or disclose its contents to anyone.

Please note we reserve the right to monitor all e-mail
communication through our internal and external networks.

SKY and the SKY marks are trade marks of British Sky Broadcasting
Group plc and are used under licence. British Sky Broadcasting
Limited (Registration No. 2906991), Sky Interactive Limited
(Registration No. 3554332), Sky-In-Home Service Limited
(Registration No. 2067075) and Sky Subscribers Services Limited
(Registration No. 2340150) are direct or indirect subsidiaries of
British Sky Broadcasting Group plc (Registration No. 2247735). All
of the companies mentioned in this paragraph are incorporated in
England and Wales and share the same registered office at Grant
Way, Isleworth, Middlesex TW7 5QD.