|

Controls (43)

Here are the controls implemented at Tookitaki to ensure compliance, as a part of our security program.

Product security (1)

Production System User Review

Data security (4)

Encrypting Data At Rest

Inventory of Infrastructure Assets

Testing for Reliability and Integrity

Hardening of Systems

Network security (6)

Limit Network Connections

External System Connections

Transmission Confidentiality

Anomalous Behavior

Data used in Testing

Centralized Collection of Security Event Logs

App security (2)

Conspicuous Link To Privacy Notice

Unauthorized Activities

Endpoint security (5)

Malicious Code Protection (Anti-Malware)

Full Device or Container-based Encryption

Endpoint Security Validation

Session Lock

Endpoints Encryption

Corporate security (25)

Code of Business Conduct

Organizational Structure

Roles & Responsibilities

New Hire Policy Acknowledgement

Security & Privacy Awareness

Performance Review

Periodic Policy Acknowledgement

Automated Reporting

Incident Reporting Assistance

Third-Party Criticality Assessments

Assigned Cybersecurity & Privacy Responsibilities

Internal Audit using Sprinto

Management Review of Org Chart

Management Review of Risks

Management Review of Third-Party Risks

Subservice organization evaluation

Segregates Roles and Responsibilities

Testing

PCI DSS Requirements

Asset Ownership Assignment

Infosec training ack

New Hire Security & Privacy Training Records

Periodic Security & Privacy Training Records

Updates During Installations / Removals

Inventory of Endpoint Assets