PCI DSS 3.1 Level 1
Our PCI DSS 3.0 compliance certifies safe and secure handling of credit card holder information. As overseen by the Payment Card Industry Security Standards Council (PCI SSC), CloudPassage places stringent controls around cardholder data as both a service provider and merchant.
CloudPassage provides managed security services that may assist our customers in securing their environments and/or meeting certain PCI DSS compliance requirements. The CloudPassage Halo service does not store, process, or transmit any cardholder data. Under the PCI Data Security Standards, our services fall into the category of impacting the security of cardholder data and as such, we acknowledge our responsibility to comply with applicable requirements for PCI for our environment. As CloudPassage does not perform hosting services, customers are fully responsible for meeting all PCI DSS requirements within their own environments.
The Federal Risk and Authorization Management Program, or FedRAMP, is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. CloudPassage is now listed as one of the few CSPs that are FedRAMP Ready in the FedRAMP Marketplace and is continuing in the next phase of the evaluation process towards “Authorized” status.