by Gerdien van den Bosch | May 22, 2018 | Compliance, PCI DSS
The Self-Assessment Questionnaires (SAQs) are validation tools designed to help merchants and service providers report on the results of their compliance with PCI DSS. It can be used by eligible organizations who self-assess their PCI DSS compliance, and who are not...
by Gerdien van den Bosch | Mar 20, 2018 | Compliance, Information security
In the security community, compliance is often treated with disregard. The statement is often made that compliance is the enemy of security. Compliance is only about ‘ticking the boxes’, and not ticking enough boxes did not cause Equifax to get breached. I...
by Gerdien van den Bosch | Jan 11, 2018 | Compliance, Security tips
Many companies are finding it difficult to recruit the right skilled security staff. Deploying and maintaining an effective IT security system is no easy task and the people with the right knowledge and experience are in short supply. The situation is likely to get...
by Gerdien van den Bosch | Dec 11, 2017 | Compliance, GDPR, PCI DSS
PCI DSS is the dominant standard for all companies that do storage, processing or transmission of payment card data. Since 2006, the compliance to this security standard is enforced by banks and acquirers in order to minimise the risk of fraud with payment cards. It...
by Gerdien van den Bosch | Dec 4, 2017 | Compliance, GDPR
Can a company that has businesses in- and outside the EU have their back up outside the EU in accordance to the GDPR? What regulation do we follow? Who do we need to notify in case of a security breach and who and how will this legislation be enforced? Having a...
by Gerdien van den Bosch | Aug 24, 2017 | Compliance
Many times it occurs that companies fail to gain compliance with the Payment Card Industry Data Security Standard (PCI DSS) because they purchased a ‘magical’ service offered by some shifty vendors. To get PCI DSS compliant, companies are recommended to start by...
