're:information on PCI DSS compliance for securing credit card
Dear Forest of Dean District Council,
• Go to the list of authorities and select ‘Local Council’
• Go to the name of the council you want to request the info from and fill in a headline which is this: Information re PCI DSS compliance for securing credit card data
• Then scroll down to the request itself and enter these questions:
• Does your organisation store or process any credit card data or other sensitive personal data?
• Are you currently PCI compliant and if so at which level?
• Have you ever failed a PCI assessment test in the last 3 years, if so how many times and why?
• During your last PCI assessment how many areas did your PCI auditor identify as in need of remediation?
• How much budget did you spend in the last 12 months on reaching/maintaining PCI Compliance?
• How much did your organisation spend on refreshments such as tea, coffee and biscuits in the last year?
• Has your organisation suffered any data breaches of personal data in the last 12 months when credit card data was leaked?
• Which of those breaches did you self-detect and how many were you notified of by third parties such as banks, police authorities etc
Yours faithfully,
Caroline
This Email, and any attachments, may contain Protected or Restricted
information and is intended solely for the individual to whom it is
addressed. It may contain sensitive or protectively marked material and
should be handled accordingly.
If this Email has been misdirected, please notify the author immediately.
If you are not the intended recipient you must not disclose, distribute,
copy, print or rely on any of the information contained in it or attached,
and all copies must be deleted immediately. Whilst we take reasonable
steps to try to identify any software viruses, any attachments to this
Email may nevertheless contain viruses which our anti-virus software has
failed to identify. You should therefore carry out your own anti-virus
checks before opening any documents.
Forest of Dean District Council will not accept any liability for damage
caused by computer viruses emanating from any attachment or other document
supplied with this e-mail. All traffic may be subject to recording and /
or monitoring in accordance with relevant legislation.
Dear Caroline,
Further to your request, please find response below:
Does your organisation store or process any credit card data or
other sensitive personal data? No
• Are you currently PCI compliant and if so at which level? Yes –
Level 4
• Have you ever failed a PCI assessment test in the last 3 years,
if so how many times and why? No
• During your last PCI assessment how many areas did your PCI
auditor identify as in need of remediation? None
• How much budget did you spend in the last 12 months on
reaching/maintaining PCI Compliance? Please see
[1]http://www.fdean.gov.uk/nqcontent.cfm?a_...
• How much did your organisation spend on refreshments such as tea,
coffee and biscuits in the last year? Please see
[2]http://www.fdean.gov.uk/nqcontent.cfm?a_...
• Has your organisation suffered any data breaches of personal data
in the last 12 months when credit card data was leaked? No
• Which of those breaches did you self-detect and how many were you
notified of by third parties such as banks, police authorities etc
Kind Regards
Tracey Griffiths
Assistant Legal Executive
Tel: 01594 812513
Fax: 01594 812470
E-mail: [3][email address]
We work to defend the right to FOI for everyone
Help us protect your right to hold public authorities to account. Donate and support our work.
Donate Now