Woods Group Ltd (trading as Woods Valldata) : Level 1 Compliant Service Provider

During May 2021 URM Consulting Ltd conducted an onsite audit of Woods Group Ltd and have found sufficient evidence and controls to find it compliant with the Payment Card Industry Data Security Standard (PCI DSS) v3.2.1 as a Level 1 Service Provider.

This included:

• Validating the scope of the cardholder data environment by understanding the card data flows, reviewing the implementation of technical segmentation controls and reviewing the results of penetration testing
• Assessing its people, processess, and systems against any relevant requirements of the PCI DSS

Woods Group Ltd has been providing specialist fund-raising services for charities since 1998 and provides payment services for those charities which include the use of payment cards. As part of providing these payment services Woods Group Ltd processes card holder data through a number of different channels including paper forms, phone-based payments, and e-commerce. Woods Group Ltd does not collect or store any sensitive authentication data as part of these services.