Mobile Menu icon

Whatever you need we've got IT covered.

Our highly experienced support team are capable of handling any IT support issue, so you can relax and concentrate on making your business a success.

In the event of any problems, our standard support hours are 9am-5.30pm, Monday-Thursday, and until 5.00pm on Friday. We offer an extended hours contract whereby the support hours become 8am-6pm, Monday-Friday. If you need a quick solution to a technical problem, then our live remote-assistance tool can help. A member of our dedicated support team can liaise directly with you to find the answer to your question.

Step One - Call 0844 800 4456

CLICK HERE FOR LIVE REMOTE ASSISTANCE

×

Support Form

If you are in need of support please fill in the form below or call us on 0844 800 4456

×

Contact Us

London Office:

Main number: 020 3507 1920

Sales number: 020 3507 1922

Technical support: 0844 800 4456

Essex Office:

Main number: 01268 494 100

Sales number: 01268 494 160

Technical support: 0844 800 4456

×

Blogs

Payment Card Industry vs International Organisation for Standards

Anyone researching the Payment Card Industry, or PCI, for the first time may notice many similarities with ISO regulations, short for International Organisation for Standards, and specifically ISO 27001. Both are sets of regulations for companies to follow concerning information security management. 

Similarities- The goal of PCI and ISO is to control and protect customer data, by establishing international industry standards. Both require audits and scans of systems to show compliance with these standards. Both also operate on industry best practices set forth by regulating committees. PCI DSS can be used as a part of becoming ISO 27001 compliant, and that is where the similarities stop.

Differences- While PCI and ISO are similar in ideology, their methods differ. The table below notes some of these differences.

Topic

PCI

ISO

Geographical Acceptance

North American & Europe

Internationally Recognized

Compliance Mandates

Compliance Mandatory

Compliance Voluntary

Company Scope

Functioning Levels

Overall Company

Degree of Compliance

Must Meet All Standards

Standards Voluntary

Separation of Systems

High

Low

Degree of Flexibility

Low

High

ISO is an overall measure for companies to use for compliance of information security management. PCI is a more standardised and regulated sub-section of information security management that pertains specifically to cardholder data. PCI compliance could be a part of overall ISO compliance if a company were concerned with meeting both regulations. This is an important topic for a systems administrator to understand, but ISO is voluntary whereas PCI is mandated. Though having many differences both aim to protect sensitive company and cardholder information, which should be a concern of any company and its stakeholders.

If you would like to find out more about Cyber Essentials please contact Maria West 01268 494160 or email: info@yellowspring.co.uk

back

Latest News

We explore how the financial industry will be affected when the new data protection law

Read more

Even law firms will be affected by the new data protection regulation coming into place

Read more

Even if you are already GDPR compliant, are you sure you know these 5 ways

Read more