undefined | Better HN

0 pointsrswail5y ago0 comments

Are you planning external compliance certification similar to AWS [1]? In particular the PCI/DSS world requires underlying auditing and compliance of infrastructure components.

[1] https://aws.amazon.com/compliance/programs/

0 comments

1 comments · 1 top-level

bvallelunga5y ago

Similar to AWS we plan to get extensive external compliance certifications starting with SOC 2. We are currently in our first audit cycle and plan to expand into other compliances there after. Truthfully we are still evaluating which compliances to get next (PCII, ISO, etc) based on customer demand.

We also do frequent pentests to help vet our infrastructure and security posture.

j / k navigate · click thread line to collapse