@neurovagrant @dangoodin @mttaggart @Em0nM4stodon personally, I'd say no #US company can make any privacy claims by design because #CloudAct exists and that applies to everyone (regardless if #ClosedAI or #Signal) having personnel, office, infrastructure or offering services from within the #USA.

#NotLegalAdvice but Cloud Act is irreconcileable with any #privacy & #dataProtection laws, not just #GDPR & #BDSG, but even #HIPAA & #PCIDSS!

𝐂𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞 𝐖𝐫𝐚𝐩𝐩𝐞𝐝 𝐔𝐩 𝐁𝐞𝐟𝐨𝐫𝐞 𝐘𝐞𝐚𝐫-𝐄𝐧𝐝

If PCI compliance isn’t complete, now is the time to close it.

Our team delivers fully managed PCI DSS scans in 24–48 hours, designed for busy retail and ecommerce environments.

❌ No last-minute chaos.
❌ No January carry-over.

✅ Get your PCI requirements done: https://outpost24.com/products/pci/

#PCIDSS #Compliance #ITSecurity #RiskManagement #GRC

GRC rarely feels like “governance, risk, and compliance” and more like alphabet soup with lawyers attached.

I wrote up how I approach GRC as an Associate CCISO: one risk-based program mapped to HIPAA, PCI DSS, NIST CSF, FTC Safeguards, and NIS2 instead of five separate nightmares.

🔗 https://www.kylereddoch.me/blog/grc-in-the-real-world-making-hipaa-pci-nist-csf-ftc-safeguards-and-nis2-work-together/

#GRC #CyberSecurity #InfoSec #Compliance #HIPAA #PCIDSS #NISTCSF #NIS2

Chase account tells me that #Animoto is storing my payment card information despite me closing the account. I reached out to them, and they confirmed my account has been closed. That is NOT why I contacted them. I contacted them because my card company believes they are still holding onto my payment information. I do not know how they know that, but apparently they do, and it shows on the security page at Chase. Chase says they cannot remove it and I must contact the merchant.

#PCI #PCIDSS

PCI DSS 4.0 represents a philosophical shift from point-in-time validation to continuous, risk-based assurance.

Ready to operationalize compliance as a continuous practice?

Join us today at 10am PT / 1pm ET for a joint session with ControlCase and PCI DSS author Branden R. Williams.

In this webinar, we'll explore:

> The new compliance paradigm: Understanding the intent behind PCI DSS 4.0 changes and what continuous assurance means for your operations.

> Automation at scale: How to automate and scale assessment processes while maintaining control and visibility.

> Infrastructure for compliance: Using the SecOps Cloud Platform as your central compliance data layer with built-in retention, auditability, and integration capabilities.

> MSSP opportunities: How service providers can efficiently scale compliance services and create new revenue streams.

Learn how to build compliance operations that support business growth and trust.

Register now: https://limacharlie.wistia.com/live/events/nm3o9l8509?utm_campaign=pci+webinar+11+12+25&utm_source=mastodon&utm_medium=social

#cybersecurity #pcidss #compliance #secops

Two days until our PCI DSS 4.0 webinar with ControlCase and author Branden R. Williams.

Wednesday, November 12th at 10am PT / 1pm ET.

PCI DSS 4.0 is more than new requirements. It's a shift to continuous, risk-based security that creates opportunities for organizations that embrace it.

We'll cover:

> What's changed and why it matters
> How to interpret the intent behind the requirements
> Operationalizing continuous compliance
> Creating competitive advantages through automated assessment and enforcement

Designed for security engineers, compliance architects, and service providers building scalable compliance operations.

Last chance to register: https://limacharlie.wistia.com/live/events/nm3o9l8509?utm_campaign=pci+webinar+11+12+25&utm_source=mastodon&utm_medium=social

#cybersecurity #pcidss #compliance #secops

PCI DSS 4.0 isn't just a compliance update. It's a fundamental shift to continuous, risk-based security.

Join LimaCharlie, ControlCase, and author Branden R. Williams on Wednesday, November 12th at 10am PT to learn how to turn compliance from a burden into a competitive advantage.

What you'll learn:

> What's changed in PCI DSS 4.0 and why
> How MSSPs can create new revenue opportunities through compliance as a service
> Building continuous compliance operations with automated data collection and enforcement
> Practical approaches to auditability, retention, and integration

Register now: https://limacharlie.wistia.com/live/events/nm3o9l8509?utm_campaign=pci+webinar+11+12+25&utm_source=mastodon&utm_medium=social

#cybersecurity #pcidss #compliance #secops