Blog

Virtual Terminal

15 Nov
2018

The Aftershock of GDPR (Part 2)

Tokenization + Security-as-a-Service John Noltensmeyer | Head of Global Privacy and Compliance Solutions, TokenEx Nancy Free | Chief Compliance and Data Privacy Officer In the last blog, we discussed the new GDPR standards, what they mean for organizations and individuals, and the ripple effect as other countries implement similar legislation. With so

13 Nov
2018

The Aftershock of GDPR

John Noltensmeyer | Head of Global Privacy and Compliance Solutions, TokenEx Nancy Free | Head of GRC and Corporate IT This year, information security professionals experienced a significant impact to the industry: The European Union’s (EU) General Data Protection Regulation (GDPR). Since its implementation on May 25th, the way companies around the globe

12 Nov
2018

Assessing a Tokenization Environment

When performing audits, QSAs are expected to evaluate an entity’s processes for adhering to the Payment Card Industry Data Security Standards (PCI DSS). This can be a cumbersome, time-consuming task, and it requires a deep knowledge and understanding of various types of compliance strategies. Often, businesses choose to meet PCI requirements

25 Oct
2018

5 Takeaways from PCI Europe Community Meeting

5 Takeaways from PCI Europe Community Meeting 1. QSAs underestimate the PCI DSS scope reduction provided by cloud-based tokenization. While familiar with tokenization as an on-premise solution or as a service provided by payment processors, many QSAs we spoke with during the PCI Europe Community Meeting were often unaware of

12 Sep
2018

Complying with the CCPA’s “Right to be Forgotten”

Complying with the CCPA’s “Right to be Forgotten” The recently passed California Consumer Privacy Act (CCPA) is still over a year away from its January 1, 2020, enforcement date, but organizations who do business in California are already preparing. California has long been the leader in the United States for

15 Aug
2018

Understanding Compliance: California Consumer Privacy Act

Understanding Compliance: California Consumer Privacy Act By now, you’ve likely heard of the California Consumer Privacy Act, or the CaCPA or CCPA for short. This law is intended to provide California residents with greater control over their personal information when it takes effect on January 1, 2020. As with most

07 Aug
2018

What the 2018 PCI DSS 3.2.1 Updates Mean for Your Organization

What the 2018 PCI DSS 3.2.1 Updates Mean for Your Organization The PCI Security Standards Council (SSC) introduced a few updates this year to the PCI DSS (PCI Data Security Standard). Although most of the updates are minor, there are issues that will impact how your organization achieves PCI compliance.