There are some technical Problems at the Moment - please excuse the time we Need to Response - we are not as extremely fast as usual...


Data Discovery

A thorough data discovery phase is the crucial starting point of any successful data protection project. The PCI DSS Standards document, for instance, is quite clear about what should be undertaken as a first step:

  • ”The first step of a PCI DSS assessment is to accurately determine the scope of the review. At least annually and prior to the annual assessment, the assessed entity should confirm the accuracy of their PCI DSS scope by identifying all locations and flows of cardholder data…”
  • ”The entity retains documentation that shows how PCI DSS scope was confirmed and the results, for assessor review and/or for reference…”
  • This can be achieved by using an intelligent data discovery tool like PANfinder