Compliance Management

PCI DSS

PCI DSS is widely set of procedures and policies intended to optimize the security. Any company that processes, stores or send out cardholder data is required to be PCI compliant.

HIPAA

The HIPPA (Health Insurance Portability and Accountability Act) was signed into law in 1996. It has expanded notoriety for establishing authoritarian standards around ensuring data security and privacy.

ISO 27001

The ISO 27000 is an information security standard with series of standards and catalog of international standards focused on information security and published by the International Standard for Organization.

SOC 2

Service Organization Controls (SOC) 2 compliance are explicitly prescribed for service based organisations such as SaaS Providers, Data Center/ Colocations, Document Production, and Data Analytics providers.

GDPR

The General Data Protection Regulation (GDPR) is a new standard in protection of Data Privacy of EU citizens. Replacing the existing GDPR regulation, it mandates a wider definition of Personally Identification Information (PII) and imposes strict penalties for non-compliance. The last date for complying to EU-GDPR is May 25, 2018.