PCI DSS is a standard that was created by the Security Standards Council over eleven years ago to protect cardholder data. It applies to any business who stores, processes or transmits cardholder data. Also known as the Cardholder Data Environment (CDE), PCI DSS applies a strict set of requirements to the People, Processes and Technologies that operate within that environment. Each requirement set out within the standard requires regular audit and assessment as part of the compliance regime.
Find out moreThe General Data Protection Regulation (GDPR) became enforceable on the 25 May 2018. This means any business processing EU citizen’s person data is bound by the regulation, regardless of whether your business is inside the EU or not. This has placed a greater emphasis on the service providers we all chose, as well as the supply chain and the technical and organisation measures in place to ensure compliance with the regulation. Data controllers have to provide sufficient guarantees that whoever processes data on their behalf can do so according to GDPR.
The Bunker have created the controls and services necessary to help customers achieve their own compliance. Whether you are colocating with The Bunker or taking a fully managed service, our physical and digital security protocols have been created with privacy by design to help you meet compliance.
Certificates and codes of conduct are a good way to demonstrate compliance, but they do not guarantee it. Whether you are a data controller or governed by various regulators, there is a greater emphasis on the due diligence carried out on the supply chain. We understand this, and our fully-transparent approach enables you to conduct the due diligence, and gain the peace of mind, that you need.
Our Auditable Assurance gives you access to our data centres, controls and governance teams, so that you can validate, evidence and provide sufficient guarantee of our compliance.
ISO/IEC ISO 27001:2013 is part of the IEC/ISO family. It is an Information Security Management System (ISMS) specification that outlines a framework of an organisation’s legal, physical and technical controls.
The Bunker’s policies, processes and procedures have been meticulously aligned to this standard and are independently audited by the British Standards Institute (BSI) annually to ensure information security is managed accordingly.
PCI DSS Controls
PCI DSS is a standard that was created by the Security Standards Council over eleven years ago to protect cardholder data. It applies to any business who stores, processes or transmits cardholder data. Also known as the Cardholder Data Environment (CDE), PCI DSS applies a strict set of requirements to the People, Processes and Technologies that operate within that environment. Each requirement set out within the standard requires regular audit and assessment as part of the compliance regime.
Find out more
GDPR Controls
The General Data Protection Regulation (GDPR) became enforceable on the 25 May 2018. This means any business processing EU citizen’s person data is bound by the regulation, regardless of whether your business is inside the EU or not. This has placed a greater emphasis on the service providers we all chose, as well as the supply chain and the technical and organisation measures in place to ensure compliance with the regulation. Data controllers have to provide sufficient guarantees that whoever processes data on their behalf can do so according to GDPR.
The Bunker have created the controls and services necessary to help customers achieve their own compliance. Whether you are colocating with The Bunker or taking a fully managed service, our physical and digital security protocols have been created with privacy by design to help you meet compliance.
Auditable Assurance
Certificates and codes of conduct are a good way to demonstrate compliance, but they do not guarantee it. Whether you are a data controller or governed by various regulators, there is a greater emphasis on the due diligence carried out on the supply chain. We understand this, and our fully-transparent approach enables you to conduct the due diligence, and gain the peace of mind, that you need.
Our Auditable Assurance gives you access to our data centres, controls and governance teams, so that you can validate, evidence and provide sufficient guarantee of our compliance.
ISO 27001
ISO/IEC ISO 27001:2013 is part of the IEC/ISO family. It is an Information Security Management System (ISMS) specification that outlines a framework of an organisation’s legal, physical and technical controls.
The Bunker’s policies, processes and procedures have been meticulously aligned to this standard and are independently audited by the British Standards Institute (BSI) annually to ensure information security is managed accordingly.
