Case Study: The Co-operative Group achieves PCI compliance with Kerv Connect network segmentation

PCI compliance by creating network segmentation across 3500 stores nationwide

The Co-operative Group, the UK’s largest mutual retailer, needed to achieve PCI compliance across about 3,500 stores while protecting cardholder data and avoiding the cost and complexity of reworking thousands of in-store devices. Kerv helped address this challenge with Kerv Connect, using network segmentation to reduce the PCI scope without requiring a full reconfiguration of store systems.

Kerv Connect implemented a small firewall appliance with security zones in each store, operating in transparent mode to control traffic between defined zones and isolate cardholder data. This avoided extensive VLAN changes and the need to re-address roughly 210,000 devices, cut project costs, and helped the rollout finish three months ahead of schedule and within budget.

The Co-operative Group