With version 4.0 of the Payment Card Industry Data Security Standard (PCI DSS), the Payment Card Industry Security Standards Council (PCI SSC) introduced the next evolution of the PCI DSS with stricter controls for data security.

Baffle is the only solution that can meet PCI DSS 4.0 requirements for PostgreSQL databases. 

VikingCloud, a leading QSA Auditor,  performed a technical review of the Baffle solution to determine its
 capacity to meet PCI DSS controls for data protection and access control.

Read this whitepaper to learn how Baffle: 

  • Offers encryption, tokenization, and data making to protect cardholder data (CHD)
  • Provides RBAC to allow read-only access for multiple types of users per their varying business needs
  • Supports strong key management processes using a Key Management Service (KMS)