Get Appointment

  • contact@wellinor.com
  • +(123)-456-7890

Sweet Success for International Cafe Chain

  • Home
  • Sweet Success for an International Cafe Chain Case
image

Sweet Success for International Cafe Chain

An International restaurant chain specializing in French inspired coffee drinks, baked goods and lunch items engaged Gurnet Consulting to ensure compliance with the Payment Card Industry’s security standards.

With over 85% of all sales attributed to credit and debit cards, our client required compliance with the Payment Card Industry’s Security Standards. With a pending deadline and the potential of substantial fines for noncompliance, our client needed to engage a firm with strong PCI expertise and track record for delivering projects on time, within budget and within scope. In other words, ensure complete compliance within the mandated time frame or face the potential of financial penalties.

  • Challenge
  • Solution
  • Results

The Payment Card Industry Security Standards Council (PCI-SSC) was founded by American Express, Discover Financial Services, JCB International, MasterCard and Visa Inc. The PCI-SSC establishes comprehensive standards, supporting materials and financial incentives to enhance payment card data security. Businesses conducting commerce through payment cards are required to comply with PCI-SSC standards including: prevention, detection and appropriate reaction to security incidents. Noncompliance can result in payment card issuer fines and government fines.

With over 85% of all sales attributed to credit and debit cards, our client required compliance with the Payment Card Industry’s Security Standards. With a pending deadline and the potential of substantial fines for noncompliance, our client needed to engage a firm with strong PCI expertise and track record for delivering projects on time, within budget and within scope. In other words, ensure complete compliance within the mandated time frame or face the potential of financial penalties.

image

The PCI Compliance Program was an enterprise endeavor that touched every aspect of the business - from corporate headquarters to over 250 globally distributed cafes. Accordingly, compliance required a cultural shift in attitudes toward information security.

Gurnet organized a team of subject matter experts to address every aspect of PCI-SSC’s compliance requirements and improve our client’s overall security posture. Great care was taken to craft an organizational change management approach that dove-tailed with company culture, obtained employee buy-in and ensured security comprehension. Key aspects of the program included business process improvement, policy development, communication management, technical architecture and program leadership.

image
As a true cross functional initiative, the program was heralded as success by the CEO, CFO and CIO alike. Through Gurnet’s Organizational Change Management, Information Security and Program Management practices, our client’s PCI Compliance Program was delivered within scope, time and budget. In addition, the company enhanced its security practices to mitigate and address future security threats.
image
  • Why Gurnet?Over the past 6 years, Gurnet has been recognized as one of the fastest growing privately held companies in the United States. We have achieved a 455% growth over this time and have led in the successful delivery of over $500 million worth of IT initiatives. Every day, we put this experience and drive to work for our clients.