Why Auchan booked audit of IT systems

On September 24, 2015 the retail chain stores Auchan announced project completion of audit on compliance of information systems and business processes of the company, to requirements of the PCI DSS 3.0 standard. Works are performed by QSA company auditors Informzashita.

Project Tasks

Network equipment, servers and applications in which storage, processing and transfer of critical data, in addition to other elements of IT infrastructure is carried out is a part of an environment of payment cards of Auchan LLC.

Auchan, 2014

Project Progress

Specialists of Informzashita performed works on identification of shortcomings and prevention of possible unauthorized access to card data of clients.

During the project the action plan for reduction of infrastructure of retail chain stores in compliance to the PCI DSS standard is created. On final a stage the certification audit which confirmed safety of processing of payment cards in retail chain stores Auchan is booked.

Project Results

Auchan created own processing center and is directly connected to international payment systems. In this case the retail chain stores exclude merchant acquirer from a payment chain that helps to save on the commission at service of payment cards. Respectively, the processing center should observe all requirements of payment systems, including to fulfill the requirements of the PCI DSS standard, – Dmitry Kudinov, the senior auditor of department of security of banking systems of Informzashita company reports. – It should be noted that Auchan conforms not the first year to requirements of PCI DSS that speaks about the permanent high level of information security of card payments of retail chain stores".