The past few years have cemented my view that businesses are struggling to balance their juggle between keeping their payment card operations secure, aligning with new data privacy regulations, and ensuring that their business systems remain resilient.
Since the introduction of the European Union’s new General Data Protection Regulation (GDPR) , I have seen large FTSE 100 listed companies1 make the mistake of treating the protection of personal data as a separate concern to their cyber/information security management operations and have cited the GDPR as their reason for making their Group ...