Organisation: Woods Group

Standard: PCI DSS v3.2.1

Compliance Status: Compliant

Expiry Date: 30/06/2024

Scope:

Woods Group Ltd (trading as Woods Valldata) : Level 1 Compliant Service Provider

During May 2023 URM Consulting Ltd conducted an onsite audit of Woods Group Ltd and have found sufficient evidence and controls to find it compliant with the Payment Card Industry Data Security Standard (PCI DSS) v3.2.1 as a Level 1 Service Provider.

This included:

  • Validating the scope of the cardholder data environment by understanding the card data flows, reviewing the implementation of technical segmentation controls and reviewing the results of penetration testing
  • Assessing its people, processess, and systems against any relevant requirements of the PCI DSS

Woods Group Ltd has been providing specialist fund-raising services for charities since 1998 and provides payment services for those charities which include the use of payment cards. As part of providing these payment services Woods Group Ltd processes card holder data through a number of different channels including paper forms, phone-based payments, and e-commerce. Woods Group Ltd does not collect or store any sensitive authentication data as part of these services.

More information regarding URM's PCI DSS Auditing Services

Disclaimer: URM Consulting Services Ltd. has undertaken an audit of Woods Group to obtain evidence of compliance. Based on evidence reviewed by URM, Woods Group has been found to be compliant with PCI DSS v3.2.1. This activity is a 'snapshot in time' and requires that Woods Group maintain the controls that were reviewed during the audit. Please contact Woods Group if you have questions about their products, services or customer support.