Vem mer lyssnar på dina videosamtal i Google Meet?
I dagens digitala tidsålder har Google Meet blivit ett populärt val för att hålla viktiga möten. Det är en praktisk och enkel plattform som gör det möjligt att starta eller delta i möten från vilken modern webbläsare som helst på din laptop, utan att behöva installera någon extra programvara. Google Meet har blivit ett vanligt […]
Hur är det nu med känsliga data i Amazon (AWS), är det ens möjligt?
Myndighetssamarbetet eSams juridiska expertgrupp har uttalat att det inte är möjligt att använda amerikanska molntjänster för känsliga data utan att riskera att de röjs, om inte krypteringen är tillräckligt stark. Detta sammanfattar deras slutsats att sekretessreglerade uppgifter inte bör behandlas när man använder molntjänster. Det finns många lager av oro för känsliga data i publika […]
What is PCI DSS compliance and why is it important?
In an age where we in a lot of countries can declare that cash is no longer king, ensuring the secure handling of cardholder data has become increasingly important. A critical part in this has been the establishment of PCI DSS. So, what is PCI DSS compliance and how does the security standard protect card […]
PCI DSS och ISO 27001: En Kraftfull Kombination för Säker It-Drift
IT-säkerhet är en allt viktigare del av verksamheten för företag i alla branscher, och det finns många olika standarder och riktlinjer som kan hjälpa till att skydda företagets data och system. En av de mest kända standarderna är Payment Card Industry Data Security Standard (PCI DSS), som är en serie krav som är utformade för […]
Unlock the Possibilities: A HYOK Solution for SaaS Companies
Introduction Today, HYOK is essential for any SaaS provider that wants to ensure the privacy and security of their customers’ data. Hold Your Own Key, or HYOK, refers to the ability for customers to point to their private key in order to protect their data within a SaaS service. It will be important for SaaS […]
Merry Christmas 2022
Dear valued customers, As the holiday season approaches, we wanted to take a moment to thank you for your support and loyalty during 2022. It has been a great year, and we are grateful for the opportunity to serve you. As a Christmas gift to our customers, we are pleased to announce that this year […]
Shopping Trends and Cyber Threats
The holiday season brings snow (we hope), Christmas, a New Year and lots of online shopping, which is quickly getting more popular, simpler and convenient. Shopping for Christmas gifts and then trying to grab a bargain during the following sale, makes this season a time, when world online stores do what they can, to sell […]
BYOK – ”Bring Your Own Key”
BYOK stands for ”Bring Your Own Key”. It is a security concept that allows organizations to retain control over the cryptographic keys that are used to encrypt their data in the cloud. This means that the organization, rather than the cloud provider, is responsible for generating, storing, and managing the keys. This can provide an […]
The importance of being transparent in PCI DSS
Let’s talk importance of being open and transparent, especially during the GAP analysis. GAP analysis as a pre-audit It is very important for an entity starting its compliance process to perform a GAP analysis towards the standard. Such an analysis provides a sort of pre-audit to highlight the gaps (therefore GAP analysis) such an entity […]
The scoping exercise: the foundation for PCI DSS compliance
When you start a PCI DSS compliance project, scoping is what some of us QSAs use to call “requirement zero”. The more complex your processes and systems for storing, transmitting and/or processing cardholder data are, the harder it will be to achieve and maintain compliance. This explains why reducing the PCI DSS scope represents such […]