The implication that PCI is asking too much is ill-conceived (Is PCI asking too much?, 7 July). Retailers both off- and online have gained huge advantage over the years through the increased use of plastic rather than cash, and retailers have actively encouraged the use of cards as it reduces their own cash-handling charges and cuts the risk of old-style "stick 'em up" robberies.

The PCI Data Security Standard (DSS) is designed to improve the protection and safety of a customer's financial details and alleviate the overall public fear of ID theft.

Customers are still willing to hand over their plastic either online or at the till, however they are clear in their belief that the company they give their details to has a duty to protect that information.

The reason companies are hurting is that they are being asked to go from low levels of security and relaxed corporate governance to basic levels of corporate governance and known security best practice.
Far from being too onerous, retailers should be securing all types of personal information to the levels prescribed by the latest PCI standard.

Matthew Tyler, Evolution Security Systems