Statement security and digital identity protection are table-stakes in 2026. The Cyber Resilience Hub’s identity resilience framework connects consumer-facing security to enterprise IAM and fraud prevention strategy.
Explore the 2026 Cyber Resilience Framework →AMEX Statement Security
AMEX understands that card members rely on them for top-notch service and robust security.
Their commitment to data protection is evident in their founding membership of the PCI Security Standards Council, which sets the standard for data security in the payment card industry. (check here)
AMEX Not Following PCI Security Standards
And below is a proof that THEY ARE NOT following what THEY ARE STATING!
My AMEX Statement of Account and a proof in writing how their security SUCKS!
1) My name is spelled wrong (Since 2007) , I called them at least 10 times to get it fixed, result, just guess 🙂
2) My Card or membership number is shown as XXXX-XXXXXX-912345 (as it should be) now just scroll down and have a look in the CARD NUMBER , just 3 inches below and you have got the card number in full …
Is this what they call SECURITY 🙁
I hope their ONLINE Security is not bad as their STATEMENT Security
More reviews about FS
The PCI Security Standards Council (PCI SSC) sets the standard for data security in the payment card industry. However, a recent blog post by a customer has shown that American Express (AMEX) is not following these standards.
The customer’s blog post details two security flaws they found on their AMEX statement of account. The first flaw is that their name is spelled wrong. The customer has called AMEX at least 10 times to get it fixed, but the problem has not been resolved.
The second flaw is that the customer’s full card number is displayed on their statement of account. This is a serious security risk, as it could allow someone to steal the customer’s identity and make fraudulent purchases.
The customer is concerned that AMEX’s online security is just as bad as their statement security. They hope that AMEX will take steps to improve their security practices.
What is the PCI Security Standards Council?
The PCI Security Standards Council (PCI SSC) is a global organization that sets the standard for data security in the payment card industry. The PCI DSS is a set of requirements that must be met by all organizations that store, process, or transmit cardholder data.
What are the PCI DSS requirements?
The PCI DSS requirements cover a wide range of topics, including:
- Building and maintaining a secure network
- Protecting cardholder data
- Maintaining a vulnerability management program
- Implementing strong access control measures
- Regularly monitoring and testing networksMaintaining an information security policy
- Publishing, training, and maintaining PCI DSS guidelines
How can I find out more about PCI DSS?
You can find more information about PCI DSS on the PCI SSC website: https://www.pcisecuritystandards.org/
What should I do if I am concerned about my AMEX security?
If you are concerned about your AMEX security, you can contact AMEX customer service. You can also file a complaint with the PCI SSC.
It is important to choose a credit card company that takes data security seriously. AMEX’s recent security flaws show that they are not following the PCI DSS requirements. If you are concerned about your AMEX security, you should contact AMEX customer service or file a complaint with the PCI SSC.
Here are some resources that you may find helpful:
- PCI Security Standards Council: https://www.pcisecuritystandards.org/
- Federal Trade Commission: https://www.identitytheft.gov/
