Whitepaper • 05.12.2019

Protect yourself!

8 security best practices for retailers

The retail industry is a favorite target of cyber attackers. Hackers know a successful attack on a retailer can give them access to the data of thousands or even millions of payment cardholders. Cybercriminals can sell that data for a tidy profit to other criminals on the dark web who use it for fraud, identity theft, and phishing attacks. Cybercrime is big business; it’s projected to cause damages of $6 trillion by 2021 on organizations of all types and sizes.

When it comes to cyber threats, retailers have a lot at stake. They operate on thin margins and have to protect their brands. A breach that compromises the private information of customers can erode trust, prompting many to take their business elsewhere. Nineteen percent of consumers in a KPMG study said they would stop shopping at a retailer following a breach, and 33 percent said they would do so temporarily.

Logo: APG Cash Drawer

APG Cash Drawer

4 The Drove
BN9 0LA Newhaven
advertising banner for the whitepaper on security best practices for retailers...
More information on each security best practice in the APG whitepaper.
Source: APG

A strong cybersecurity posture, therefore, isn’t optional for retailers. It is an absolute must. Retailers that fail to take proper measures to secure customer data, as well as their own, risk being penalized if a breach is found to have been caused by noncompliance of relevant regulations. For many retailers – especially smaller, independent shops – security is a big challenge because they lack the requisite skills and knowledge, in which case they must seek help from solution providers that can implement security solutions to protect them. A comprehensive retail security strategy (whitepaper) must include the following eight components:

1. POS security

Retailers live and die by their POS systems. Unsecured POS software and hardware such as card readers and receipt printers can cause serious problems

2. e-Commerce protection

Retailers must protect their online storefronts as zealously as they do physical POS stations. As with the POS, PCI regulations apply to online transactions, so retailers must ensure that they have the proper controls in place to protect web shoppers.

3. User authentication

Reliable user authentication policies are critical in two primary ways: to ensure that internal users follow security protocols and to accurately identify customers. Both require strong authentication practices.

4. Endpoint monitoring

In the past, deploying antivirus (AV) software may have been sufficient to protect endpoints, but that is no longer the case. AV typically focuses only on known threats and cannot defend against newly introduced malware strands. This is why businesses need a combination of 24/7 endpoint monitoring and data analytics to defend against all kinds of threats.

5. Email protection

Many cyberattacks originate with phishing emails, and most ransomware infections start with a user clicking an infected URL or attachment. Phishing works because it preys on fear and curiosity by making emails look like they are coming from a legitimate source and persuading users to click on the URL or attachment.

6. Wi-Fi network/communications

Retailers increasingly offer Wi-Fi connections to customers in stores as a convenience – and to capture customer information for marketing purposes. However, Wi-Fi networks open to the public should be separate from those used for business functions such as inventory, HR, and POS.

7. Surveillance systems

In addition to protecting their digital assets, retailers have to secure physical stores to prevent shoplifting, fraud, and employee theft at the POS. Deploying a surveillance system with CCTV or IP-connected cameras not only helps to secure physical spaces but also acts as a crime deterrent.

8. Business continuity

No security strategy is complete without a business continuity plan. If a business suffers a cyberattack or physical operations are interrupted by a natural disaster, a company needs to resume operations as quickly as possible. A data backup and recovery strategy are central to business continuity plans.


Retailers cannot afford to be lax with security, be it in physical spaces, their IT networks, or websites. It can take a long time to recover from a security breach, especially if customers lose trust in the company. Digital theft, data breaches, and security related to new payment methods erode a consumer’s trust in a brand, making security a business essential.

For more information on these eight tips on security see the complete whitepaper on security best practices for retailers.

related articles:

popular articles:

Thumbnail-Photo: EuroCIS 2024 - technology special
11.12.2023   #online trading #e-commerce

EuroCIS 2024 - technology special

The latest technology solutions and trends for you and the retail sector

At EuroCIS 2022 from February 27 to 29, 2024, the Leading Trade Fair for Retail Technology, we will be looking at all the important and current topics relating to technology in retail: AI and Machine Learning, Payment, Connected Retail, Seamless Store and Smart Energy Management and many more.

Thumbnail-Photo: MPREIS Transforms Operations with Zebra Workcloud Task Management™...
06.11.2023   #customer experience #software developement

MPREIS Transforms Operations with Zebra Workcloud Task Management™ Software Solution

Austrian food retailer to streamline communication in around 300 stores to improve staff engagement, inventory optimisation, and customer satisfaction

MPREIS has around 300 Austrian stores in regions across Tyrol...

Thumbnail-Photo: EuroCIS 2024: Go beyond today!
16.10.2023   #retail #Tech in Retail

EuroCIS 2024: Go beyond today!

27 to 29 February 2024 will see the Who’s Who of Europe’s retail technology sector meet in Düsseldorf

Go beyond today! EuroCIS at the end of February will once again show solutions and products for the retail of the future @Messe DüsseldorfIn late February, numerous companies will again exhibit solutions and products for retailers to shape and ...

Thumbnail-Photo: Out of Stock in Retail and innovative solutions to avoid them...
07.11.2023   #brick and mortar retail #customer satisfaction

Out of Stock in Retail and innovative solutions to avoid them

Due to various events, the availability of goods in retail will be increasingly restricted from 2022, with the result that customers cannot find in food retail the products they wish to buy, because those products are sold out, are temporarily ...

Thumbnail-Photo: Nedap teams with Foot Locker to extend RFID project...
05.10.2023   #omnichannel #software applications

Nedap teams with Foot Locker to extend RFID project

Foot Locker successfully matches supply and demand in newly opened stores in Eastern Europe using RFID technology

Nedap the global leader in RFID solutions, announces that multi-brand sports fashion and apparel retailer Foot Locker has successfully extended Nedap iD Cloud to its new, Eastern European stores. The objective is to offer the best possible ...

Thumbnail-Photo: Toshiba Launches New ELERA™ Security Suite to Address the Industry’s...
22.09.2023   #cashpoints #customer experience

Toshiba Launches New ELERA™ Security Suite to Address the Industry’s Challenges Around Shrink

Toshiba’s A.I.-powered solution empowers retailers across the globe to better manage loss prevention and protect profits

Security Suite from Toshiba Global Commerce Solutions empowers retailers to minimize shrink...

Thumbnail-Photo: Unified Commerce Platform in focus
24.10.2023   #omnichannel #software developement

Unified Commerce Platform in focus

Handover at REMIRA: Dirk Bingler supersedes Stephan Unser as CEO

REMIRA is setting the course for future development of the company: On November 1, Dirk Bingler (48) will become the new CEO of the supply chain and omnichannel software expert headquartered in Dortmund. The previous CEO Stephan Unser (62) moves to ...

Thumbnail-Photo: New German vending partner for ITL
30.11.2023   #Tech in Retail #cash management

New German vending partner for ITL

Innovative Technology (ITL) have recently announced Bernd Boddart as their latest trading partner

Bernd Boddart will be supplying their cash validation and biometric age verification solutions to the German vending market. Bernd Boddart, based in Mönchengladbach, Germany, have 30 years of experience in the field of coffee machines, table ...

Thumbnail-Photo: The global state of autonomous stores
18.12.2023   #Tech in Retail #self-checkout systems

The global state of autonomous stores

The stores are located in various retail segments such as food retail, fashion, electronics, convenience stores and fast food.

In a highly competitive global retail landscape, autonomous stores are an emerging force that addresses changing consumer behaviors, reduces operational costs, improves profitability, and powers revenue growth strategies. Advancements in autonomous ...


Captana GmbH
Captana GmbH
Bundesstraße 16
77955 Ettenheim
Phoenixplatz 2
44263 Dortmund
Zebra Technologies Germany GmbH
Zebra Technologies Germany GmbH
Ernst-Dietrich-Platz 2
40882 Ratingen
Innovative Technology Ltd.
Innovative Technology Ltd.
Innovative Business Park
OL1 4EQ Oldham