Case Studies

Major Newspaper Publisher: Credit Card Industry Compliance Project

Client contact: Group Finance Director

Parkwell staff: 2 consultants

Objectives and project background

Our client had to comply with the Payment Card Industry’s Data Security Standard (PCI-DSS).  The standard requires all credit card merchants to either adhere to rigorous technical and physical security standards; or process credit card payments outside their technical environment and ensure that records are not maintained within the business.

Parkwell was engaged to assist in determining which of the two strategies was most appropriate and to help the client project manage the implementation of the chosen strategy. 

Anticipated Benefits

  • Compliance with the PCI-DSS negating the risk of having to pay significant fines and losing merchant facilities.
  • The project would also provide an opportunity to re-negotiate processing fees with acquiring banks.
 

Scope & Boundaries

  • Determine whether to continue to process credit cards as-is, or outsource the process.
  • The decision had to be taken having considered the views of Finance, IT, Customer Service and Marketing.
  • The IT department had very specific technical criteria to meet.
  • Compliance with the standard had to be achieved within six month’s of the project’s start.
  • In the event of an outsource decision Parkwell would need to minimize disruption to the business.
 

Parkwell provided the project managers whilst the client provided key staff from throughout the business.

Deliverables

  • A detailed strategy document.
  • An invitation to tender for payment service providers (PSP).
  • A PSP recommendation report.
  • Detailed to-be process documentation.
  • PSP roll-out and training plan.
 

Project Conclusion

The client accepted Parkwell’s outsource recommendation and subsequently selected a leading PSP.  Whilst the nature of the PCI-DSS meant that some process efficiencies (particularly within marketing) were lost, the client was able to secure compliance with the Standard and reduce its group-wide payment processing costs through supplier rationalisation. 


« Back to Case Studies