13 articles tagged "pci"

Hoang Leung Hoang Leung November 5, 2020
Payments Gateway

Secure Your Ecommerce Transactions for Compliance and to Monetize the Value of Your Data

As you consider how to collect payments for your ecommerce business you will also have to consider which form of payments to accept. The most widely accepted form of payment for ecommerce is card payment. As a result, you’ll have to determine how to collect card payment information in a PCI compliant manner.

Robert Faba Rob Faba October 8, 2020
Compliance PCI QSA

Enhancing PCI Qualified Security Assessor (QSA) and Customer Relations

Have you ever considered the relationship between the PCI DSS QSA and your business? When you are looking to become PCI DSS compliant and protect your consumer’s sensitive data, your Qualified Security Assessor becomes invaluable. Not only does a PCI QSA conduct your PCI DSS audit, but they are also the only person capable of providing you with a Report on Compliance (RoC).

David Scovetta David Scovetta June 1, 2020

Cost of PCI Compliance: Can Saving Money on PCI Actually Make You Safer?

So, you’re a small business owner with a startup that needs to demonstrate compliance with the Payment Card Industry Data Security Standard (PCI DSS).

Regardless of your business type, if your organization needs to become PCI compliant, that means you plan on operating on cardholder data and you have a responsibility to protect that sensitive credit card information.

David Scovetta David Scovetta April 1, 2020

Becoming PCI Compliant in Less Than 7 Business Days with VGS | Very Good Security

Do you know how long it takes to become PCI compliant?

Fulfilling all the requirements spelled out in the Payment Card Industry Data Security Standard (PCI DSS) is a complicated process with a ton of moving pieces.

marshall-jones-r Marshall Jones March 20, 2020

Achieving PCI Compliance with ISO8583

Is your organization connecting to a payment gateway, processor, or other financial institution – like FIS or I2C – that requires you to use ISO8583 to handle payment messaging?

If so, you likely already know that your business needs to achieve some form of PCI compliance in order to handle the sensitive data contained within those messages.

David Scovetta David Scovetta February 19, 2020

What is PCI Compliance? | Very Good Security

A simplified crash course on the Payment Card Industry Data Security Standard (PCI DSS), including the most cost-effective path to securing cardholder data and quickly obtaining PCI Compliance.

Unsure about PCI Compliance? Here’s everything you need to know about PCI DSS and what it takes to obtain – and demonstrate – your company’s compliance.

You can do this yourself or with the help of third parties, which we will cover at the end of this post.

Ena Kadribasic Ena Kadribasic November 6, 2019
PCI CCPA Datasecurity

Data Compliance: How Modern Businesses Can/Should Approach Data Security | Very Good Security

These days, it seems that companies are having to navigate increasingly complex data compliance regulations. From following PCI DSS rules to maintaining HIPAA, GDPR, and CCPA compliance, the complicated web of global regulatory frameworks for data protection just keeps getting more and more tangled.

Ena Kadribasic Ena Kadribasic October 16, 2019

PCI DSS outsourcing - Compliance Without EVER Touching Sensitive Cardholder Data

The next era of data security is already upon us, and it involves washing our hands of sensitive user data entirely.

Imagine a world where your business doesn’t have to worry about managing its own Payment Card Industry Data Security Standard (PCI DSS) compliance, simply because sensitive cardholder data never passes through your systems in the first place.

It’s a concept we call Zero Data.

Ena Kadribasic Ena Kadribasic September 18, 2019

To Tokenize Or Not Tokenize – The Truth About Scope And Compliance Risk

The hard-to-face reality is that billions of personal records are exposed each year. A commonly used, yet incomplete solution, is tokenization. Tokenizing sensitive data does not eliminate the need to achieve and certify PCI DSS compliance.
In order to completely descope from PCI, a business can partner with a data custodian (VGS) that handles 100% of data capture and vaulting – removing any compliance risk and completely avoiding data leaks.

Channin Gladden Channin Gladden August 27, 2019

How to Secure Your Cardholder Data Environment (CDE) and Gain PCI DSS Compliance with VGS

Learn how you can make sure that your company’s cardholder data environment (CDE) is compliant with PCI DSS.

Storing PCI cardholder data can make business much easier, for both you and your customers. Unfortunately, stored cardholder data puts your business at risk of a data breach - which is why the Payment Card Industry Data Security Standard (PCI DSS) was put in place.

Ensuring a company’s cardholder data environment (CDE) is compliant with PCI standards is no easy task, however, and often requires unanticipated additional resources and ongoing efforts to maintain.

Peter-VGS-headshot-square Peter Berg June 6, 2019
PCI Netlify SOC2 Collect
Netlify and VGS logos for hero image

Securely Capture Sensitive Data with VGS & Netlify

We’re excited to announce that we’ve partnered with our friends at Netlify to develop an add-on that effortlessly and securely collects data via webforms.

marshall-jones-r Marshall Jones July 26, 2018

VGS Completes 2018 PCI-DSS 3.2

Very Good Security, Inc. (VGS), a global leader in secure cloud services, data protection, and compliance, announced today that its data centers and cloud infrastructure have successfully completed its annual PCI DSS 3.2 compliance.

gordon-young Gordon Young June 15, 2018

PCI Scope Reduction: Understanding the Process

PCI Compliance, a Modern Approach: Audit Scope Reduction

Companies who stay within PCI scope when handling cardholder data have to deal with high maintenance costs and lengthy compliance certification processes - which is why many businesses seek to reduce their scope.