With millions of visitors each year paying by credit card to access their palaces, PCI DSS compliance is a core security requirement for HRP. To achieve compliance, HRP was required to prove adequate control over how card holder data is captured, stored and accessed by staff. SystemSkan was able to detect users copying card holder data and creating unofficial data stores on spreadsheets and databases in clear breach of company policy. By configuring real-time alerts and proactive policy enforcement within the SystemSkan solution, HRP was able to prevent these unauthorised activities while also providing the audit trail evidence required for PCI DSS compliance.
Read more: Historical Royal Palaces (HRP) PCI DSS compliance and information security policy enforcement